Microsoft's July 7 2021 PrintNightmare patch leaves systems vulnerable

https://www.bleepingcomputer.com/news/microsoft/microsofts-incomplete-printnightmare-patch-fails-to-fix-vulnerability/

https://us-cert.cisa.gov/ncas/current-activity/2021/06/30/printnightmare-critical-windows-print-spooler-vulnerability

https://us-cert.cisa.gov/ncas/current-activity/2021/07/06/microsoft-releases-out-band-security-updates-printnightmare

My case of #PrintNightmare is closed. And I can't login to MSRC portal because there is no Microsoft account option which I used. Then, how can I report that you not fix CVE-2021-1675 properly (another call is kept vulnerable)? That is your cooperation? @msftsecresponse

— Yunhai Zhang (@_f0rgetting_) July 5, 2021

Guidance is now updated. Point and Print has been clarified in the CVE. You only open yourself up to LPE on fully patched systems if NoWarningNoElevationOnInstall set to 1. (not a default)

Apply admin restrictions to print servers with KB5005010. https://t.co/J2EgjgNOag

— 🌮 (@rootsecdev) July 8, 2021

Dealing with strings & filenames is hard😉
New function in #mimikatz 🥝to normalize filenames (bypassing checks by using UNC instead of \servershare format)

So a RCE (and LPE) with #printnightmare on a fully patched server, with Point & Print enabled

> https://t.co/Wzb5GAfWfd pic.twitter.com/HTDf004N7r

— 🥝 Benjamin Delpy (@gentilkiwi) July 7, 2021

https://twitter.com/wdormann/status/1412906574998392840/photo/1

Connecting With Us
—————————————————
+ Hire Us For A Project: https://lawrencesystems.com/hire-us/
+ Tom Twitter 🐦 https://twitter.com/TomLawrenceTech
+ Our Web Site https://www.lawrencesystems.com/
+ Our Forums https://forums.lawrencesystems.com/
+ Instagram https://www.instagram.com/lawrencesystems/
+ Facebook https://www.facebook.com/Lawrencesystems/
+ GitHub https://github.com/lawrencesystems/
+ Discord https://discord.gg/ZwTz3Mh

Lawrence Systems Shirts and Swag
—————————————————
►👕 https://teespring.com/stores/lawrence-technology-services

AFFILIATES & REFERRAL LINKS
—————————————————
Amazon Affiliate Store
🛒 https://www.amazon.com/shop/lawrencesystemspcpickup

All Of Our Affiliates that help us out and can get you discounts!
🛒 https://www.lawrencesystems.com/partners-and-affiliates/

Gear we use on Kit
🛒 https://kit.com/lawrencesystems

Try ITProTV free of charge and get 30% off!
🛒 https://go.itpro.tv/lts

Use OfferCode LTSERVICES to get 10% off your order at
🛒 https://www.techsupplydirect.com/

Digital Ocean Offer Code
🛒 https://m.do.co/c/85de8d181725

HostiFi UniFi Cloud Hosting Service
🛒 https://hostifi.net/?via=lawrencesystems

Protect you privacy with a VPN from Private Internet Access
🛒 https://www.privateinternetaccess.com/pages/buy-vpn/LRNSYS

Patreon
💰 https://www.patreon.com/lawrencesystems

#PrintNightmare

source

windows server 2012