Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Print Spooler service in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, when printer sharing is enabled, does not properly validate spooler access permissions, which allows remote attackers to create files in a system directory, and consequently execute arbitrary code, by sending a crafted print request over RPC, as exploited in the wild in September 2010, aka "Print Spooler Service Impersonation Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Windows Print Spooler服务输入验证漏洞
Vulnerability Description
Windows是微软发布的非常流行的操作系统。 Windows打印后台程序没有充分的限制访问该服务的用户权限,攻击者可以通过提交特制的打印请求在Windows系统目录中创建文件。成功利用这个漏洞可以以系统权限执行任意代码,但要求通过RPC暴露了打印后台程序的接口,而默认下打印机并不是共享的。
CVSS Information
N/A
Vulnerability Type
N/A