CVE-2021-34527 PoC — Microsoft Windows Print Spooler Components 安全漏洞

Source

https://github.com/thomas-lauer/PrintNightmare

Associated Vulnerability

Title:Microsoft Windows Print Spooler Components 安全漏洞 (CVE-2021-34527)
Description:Microsoft Windows Print Spooler Components是美国微软（Microsoft）公司的一个打印后台处理程序组件。 Microsoft Windows Print Spooler Components 存在安全漏洞，攻击者可以通过该漏洞绕过PfcAddPrinterDriver的安全验证，并在打印服务器中安装恶意的驱动程序。以下产品和版本受到影响:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1

Description

Kritische Sicherheitslücke PrintNightmare CVE-2021-34527

File Snapshot


 [4.0K]  /data/pocs/433922497a84937e202552b1a627f2eee0555294
├── [ 223]  BackupAclPrintSpooler.cmd
├── [1.2K]  DattoRMMAclComponenteAngepasst.ps1
├── [ 688]  Monitoring Policy SYSMON_PrinterSpooler.pcy
├── [4.3K]  readme.md
├── [ 164]  RemoveAclPrintSpooler.cmd
├── [ 250]  RemoveACL.ps1
├── [ 158]  RestrictDriverInstallationToAdministrators.cmd
├── [ 172]  SetAclPrintSpooler.cmd
├── [ 248]  SetACL.ps1
├── [2.0K]  StopUnusedPrinterserver.ps1
└── [110K]  sysmonconfig-export.xml

0 directories, 11 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!