CVE-2021-1675 PoC — Microsoft Windows Print Spooler Components 安全漏洞

Source

https://github.com/ozergoker/PrintNightmare

Associated Vulnerability

Title:Microsoft Windows Print Spooler Components 安全漏洞 (CVE-2021-1675)
Description:Microsoft Windows Print Spooler Components是美国微软（Microsoft）公司的一个打印后台处理程序组件。 Microsoft Windows Print Spooler Components存在安全漏洞。以下产品和版本受到影响：Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows 10 Version 1809 for AR

Description

Windows Print Spooler Service RCE CVE-2021-1675 (PrintNightmare)

Readme

# Windows Print Spooler Service RCE CVE-2021-1675 (PrintNightmare)
![image](https://user-images.githubusercontent.com/86879266/124354518-146c5500-dc15-11eb-98a3-f84d5ee28585.png)




# How to disable the Print Spooler service ?



# CMD Shell

net start | findstr -i "spooler"

net stop spooler

REG ADD "HKLM\SYSTEM\CurrentControlSet\Services\Spooler" /v "Start " /t REG_DWORD /d "4" /f



# PowerShell

Get-Service -Name Spooler

Stop-Service -Name Spooler -Force

Set-Service -Name Spooler -StartupType Disabled



# Service Control

sc query Spooler

sc config Spooler start=disabled



# References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527

#CVE-2021-1675 #PrintNightmare #WindowsPrintSpoolerServiceRCE

File Snapshot


 [4.0K]  /data/pocs/83ec834effdbb074869791aaaed728eba21d419d
├── [ 737]  README.md
└── [ 38K]  windows-print-spooler-vulnerability.jpg

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!