News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • Windows 7-10 & servers, Print Spooler CVE-2020-1048

    Posted on Alex5723 Comment on the AskWoody Lounge

    Home Forums Code Red – Security/Privacy advisories Windows 7-10 & servers, Print Spooler CVE-2020-1048

    Viewing 1 reply thread
    • Author
      Posts
      • #2287027 Reply
        Alex5723
        AskWoody Plus

        No fix yet.

        An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

        To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted script or application.

        https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1048

      • #2287129 Reply
        Paul T
        AskWoody MVP

        Hardly an issue if you have to log onto the system first. If you already have a server logon the fences are very low.

        cheers, Paul

    Viewing 1 reply thread

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: Windows 7-10 & servers, Print Spooler CVE-2020-1048

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.