POC详情: cd96abe78df911e542027d9e0375ef70b7174ca5

来源
关联漏洞
标题: Microsoft Windows Print Spooler Components 安全漏洞 (CVE-2021-34527)
描述:Microsoft Windows Print Spooler Components是美国微软(Microsoft)公司的一个打印后台处理程序组件。 Microsoft Windows Print Spooler Components 存在安全漏洞,攻击者可以通过该漏洞绕过PfcAddPrinterDriver的安全验证,并在打印服务器中安装恶意的驱动程序。以下产品和版本受到影响:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1
描述
A collection of scripts to help set the appropriate registry keys for CVE-2021-34527
介绍
# PowerShell-PrintNightmare
A collection of scripts to help set the appropriate registry keys for CVE-2021-34527 shared as part of our blogs outlining various mitigation options. 

servers.ps1 contains the registry settings related to PointAndPrint. You still need to install the patch!
workstations.ps1 is more a hardening script to blocking inbound remote printing on devices you don't want to share / host printers.

Read more on our blogs or broader / alternative methods over at https://www.syntaxbearror.io/blog/printnightmare-part-ii-print-spooler-remains-vulnerable-across-windows/

For the blog that referenced this repository, view it at https://www.syntaxbearror.io/blog/printnightmare-part-iii-patching-remediation/
文件快照

[4.0K] /data/pocs/cd96abe78df911e542027d9e0375ef70b7174ca5 ├── [ 728] README.md ├── [2.0K] servers.ps1 └── [1.1K] workstations.ps1 0 directories, 3 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。