Posted on 07/13/2016 9:34:12 PM PDT by Utilizer
Microsoft has patched today a critical security vulnerability in the Print Spooler service that allows attackers to take over devices via a simple mechanism. The vulnerability affects all Windows versions ever released.
Security firm Vectra discovered the vulnerability (CVE-2016-3238), which Microsoft fixed in MS16-087. At its core, the issue resides in how Windows handles printer driver installations and how end users connect to printers. Exploit executes payload under SYSTEM user
By default, in corporate networks, network admins allow printers to deliver the necessary drivers to workstations connected to the network. These drivers are silently installed without any user interaction and run under the SYSTEM user, with all the available privileges.
Vectra researchers discovered that an attacker can replace these drivers on the printer with malicious files that allow them to execute any code they'd like on the infected machine.
The attack can be launched from the local network or via the Internet, thanks to the Internet Printing Protocol or the webPointNPrint protocol. This type of attack can be delivered via innocuous methods such as ads (malvertising) or JavaScript code hidden in compromised websites.
(Excerpt) Read more at news.softpedia.com ...
Ping...
Gee whiz, I guess I might have been correct once. Again.
My internet browsing computer is NOT connected to any printer. My work computer is not connected to the web. My printer is connected to NOTHING until I want to print. From the web or the work box.
I run scans on all files I want to print before they get connected.
I STILL have to get my boxes cleaned annually.
I HATE virusboys and hackrs
I use coupon.com for manufacturer coupons, and every time they do an update, their patch installs a UNKNOWN printer in the computer. We have only 1 printer and it is set as default printer.
Step Daughter is IT Specialist who owns her own business and she hates malware, viruses etc. She has all our computers as hack and virus proof as she can get them. Constantly preaching about the necessity to back up all your work in a online service like the cloud, or on a external hard drive.
Thanks to Utilizer for the ping!!
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.