On June 8, 2021, Microsoft released its June security updates to address a privilege elevation vulnerability (CVE-2021-1675) in the Windows Print Spooler service. An unauthenticated remote attacker can exploit this vulnerability without user interaction to execute arbitrary code with SYSTEM privileges on a domain controller, potentially gaining control over the entire domain. Alibaba Cloud recommends promptly applying the patch and taking appropriate security measures.
Vulnerability details
- CVE ID: CVE-2021-1675
- Severity: Critical
- Affected versions:
- Windows Server 2019
- Windows Server 2016
- Windows Server 2012 R2
- Windows Server 2008 R2
- Windows Server, version 2004 (Server Core installation)
- Windows Server, version 1909 (Server Core installation)
Description
The Print Spooler is a service in the Windows operating system that manages printing tasks.
Security recommendations
Apply the official patch promptly.
Remediation
Download and install the relevant patch from the official Microsoft website. For detailed instructions, refer to the security guide for CVE-2021-1675.
Announcing party
Alibaba Cloud Computing Co., Ltd.