Microsoft Acknowledges Severe, Unpatched, Actively Exploited Print Spooler Service Vulnerability "PrintNightmare"

TheoneandonlyMrK · Jul 4, 2021

This is way beyond a zero day it's 2000bc comparatively.
It's been about since pong but only now some researchers discovered it.

HD64G · Jul 4, 2021

R-T-B said:
Windows 7 is affected and likely won't be patched.

Microsoft Acknowledges Severe, Unpatched, Actively Exploited Print Spooler Service Vulnerability "PrintNightmare"

Really smells like an out-of-band update coming!

www.techpowerup.com

Free Micropatches for PrintNightmare Vulnerability (CVE-2021-34527)

by Mitja Kolsek, the 0patch Team Update 8/11/2021: August 2021 Windows Updates brought a fix for PrintNightmare that has the same default ef...

blog.0patch.com

64K · Jul 4, 2021

HD64G said:
Windows 7 can be affected but MS probably won't patch it.

I wouldn't expect Windows 7 to be issued a patch. It's an 11 year OS that even Extended Support ended 1 1/2 years ago.

HD64G · Jul 4, 2021

64K said:
I wouldn't expect Windows 7 to be issued a patch. It's an 11 year OS that even Extended Support ended 1 12 years ago.

Win7 paid support continues as we speak, so they are obliged to fix it. if they are going to offer the patch for free, who knows...

64K · Jul 4, 2021

HD64G said:
Win7 paid support continues as we speak, so they are obliged to fix it. if they are going to offer the patch for free, who knows...

I just don't see many people paying for extended support. It's going up to $100 next year whereas you can get Windows 10 Extended Support for free until 2025. I guess if someone really likes using Windows 7 then they might pay for Extended Support.

R-T-B · Jul 5, 2021

HD64G said:
Microsoft Acknowledges Severe, Unpatched, Actively Exploited Print Spooler Service Vulnerability "PrintNightmare"

Really smells like an out-of-band update coming!

www.techpowerup.com

Free Micropatches for PrintNightmare Vulnerability (CVE-2021-34527)

by Mitja Kolsek, the 0patch Team Update 8/11/2021: August 2021 Windows Updates brought a fix for PrintNightmare that has the same default ef...

blog.0patch.com

Some excerpts:

Windows 7 - seems unaffected (we were unable to remotely connect so it's possible printing is not exposed via RPC; further testing is needed)

Also, WIndows 10 is not affected unless joined to a domain. My guess is 7 is just too old to speak whatever domain protocol it's using.

This whole thing is a nonissue for home users.

scoutingwraith · Jul 5, 2021

I literary just finished mitigating everything in our environment because of this dumb mistake......

Thanks Microsoft.

lexluthermiester · Jul 5, 2021

R-T-B said:
Windows 7 is affected and likely won't be patched.

Not really a big problem. Again, turning off print sharing and placing the service into a "Manual" state instantly solves the problem. Patching is not critically needed.

R-T-B said:
This whole thing is a nonissue for home users.

Exactly.

System Name	RyzenGtEvo/ Asus strix scar II
Processor	Amd R5 5900X/ Intel 8750H
Motherboard	Crosshair hero8 impact/Asus
Cooling	360EK extreme rad+ 360$EK slim all push, cpu ek suprim Gpu full cover all EK
Memory	Gskill Trident Z 3900cas18 32Gb in four sticks./16Gb/16GB
Video Card(s)	Asus tuf RX7900XT /Rtx 2060
Storage	Silicon power 2TB nvme/8Tb external/1Tb samsung Evo nvme 2Tb sata ssd/1Tb nvme
Display(s)	Samsung UAE28"850R 4k freesync.dell shiter
Case	Lianli 011 dynamic/strix scar2
Audio Device(s)	Xfi creative 7.1 on board ,Yamaha dts av setup, corsair void pro headset
Power Supply	corsair 1200Hxi/Asus stock
Mouse	Roccat Kova/ Logitech G wireless
Keyboard	Roccat Aimo 120
VR HMD	Oculus rift
Software	Win 10 Pro
Benchmark Scores	laptop Timespy 6506

Processor	AMD Ryzen 5 5600@80W
Motherboard	MSI B550 Tomahawk
Cooling	ZALMAN CNPS9X OPTIMA
Memory	2*8GB PATRIOT PVS416G400C9K@3733MT_C16
Video Card(s)	Sapphire Radeon RX 6750 XT Pulse 12GB
Storage	Sandisk SSD 128GB, Kingston A2000 NVMe 1TB, Samsung F1 1TB, WD Black 10TB
Display(s)	AOC 27G2U/BK IPS 144Hz
Case	SHARKOON M25-W 7.1 BLACK
Audio Device(s)	Realtek 7.1 onboard
Power Supply	Seasonic Core GC 500W
Mouse	Sharkoon SHARK Force Black
Keyboard	Trust GXT280
Software	Win 7 Ultimate 64bit/Win 10 pro 64bit/Manjaro Linux

Processor	i7 7700k
Motherboard	MSI Z270 SLI Plus
Cooling	CM Hyper 212 EVO
Memory	2 x 8 GB Corsair Vengeance
Video Card(s)	Temporary MSI RTX 4070 Super
Storage	Samsung 850 EVO 250 GB and WD Black 4TB
Display(s)	Temporary Viewsonic 4K 60 Hz
Case	Corsair Obsidian 750D Airflow Edition
Audio Device(s)	Onboard
Power Supply	EVGA SuperNova 850 W Gold
Mouse	Logitech G502
Keyboard	Logitech G105
Software	Windows 10

Processor	AMD Ryzen 5 5600@80W
Motherboard	MSI B550 Tomahawk
Cooling	ZALMAN CNPS9X OPTIMA
Memory	2*8GB PATRIOT PVS416G400C9K@3733MT_C16
Video Card(s)	Sapphire Radeon RX 6750 XT Pulse 12GB
Storage	Sandisk SSD 128GB, Kingston A2000 NVMe 1TB, Samsung F1 1TB, WD Black 10TB
Display(s)	AOC 27G2U/BK IPS 144Hz
Case	SHARKOON M25-W 7.1 BLACK
Audio Device(s)	Realtek 7.1 onboard
Power Supply	Seasonic Core GC 500W
Mouse	Sharkoon SHARK Force Black
Keyboard	Trust GXT280
Software	Win 7 Ultimate 64bit/Win 10 pro 64bit/Manjaro Linux

Processor	i7 7700k
Motherboard	MSI Z270 SLI Plus
Cooling	CM Hyper 212 EVO
Memory	2 x 8 GB Corsair Vengeance
Video Card(s)	Temporary MSI RTX 4070 Super
Storage	Samsung 850 EVO 250 GB and WD Black 4TB
Display(s)	Temporary Viewsonic 4K 60 Hz
Case	Corsair Obsidian 750D Airflow Edition
Audio Device(s)	Onboard
Power Supply	EVGA SuperNova 850 W Gold
Mouse	Logitech G502
Keyboard	Logitech G105
Software	Windows 10

System Name	Pioneer
Processor	Ryzen 9 9950X
Motherboard	MSI MAG X670E Tomahawk Wifi
Cooling	Noctua NH-D15 + A whole lotta Sunon, Phanteks and Corsair Maglev blower fans...
Memory	64GB (2x 32GB) G.Skill Flare X5 @ DDR5-6200(Running 1T no GDM)
Video Card(s)	PNY RTX 5080 OC
Storage	Intel 5800X Optane 800GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs, 1x 2TB Seagate Exos 3.5"
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W 80Plus Titanium PSU
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64 / Windows 11 Enterprise (yes it's legit)

System Name	Minerva / Remus
Processor	i9 10900KF (5.1Ghz) / Ryzen 5600X
Motherboard	Asus TUF Gaming Z490 / MSI 550 Pro
Cooling	Corsair iCUE H150i / Air Cooler
Memory	64Gb Crucial Ballistix (3200) / 16GB Crucial Ballistix (3200)
Video Card(s)	Asus Tuf 3070 Ti / Quadro P1000
Storage	16TB / 20TB
Display(s)	Dell S2719DGF + HP z27 / Dell P22
Case	Fractal Design 7 XL / MSi
Audio Device(s)	Realtek HD
Power Supply	Corsair HX750W Modular / Corsair CX550
Mouse	Logitech G502 / G602
Keyboard	Havit Kalih Blue Switch /
Software	Win 10 Pro / Ubuntu 20.04
Benchmark Scores	Suggestions.