Threat Brief: Windows Print Spooler RCE Vulnerability (CVE-2021-34527 AKA PrintNightmare)

This post is also available in: 日本語 (Japanese)

Executive Summary

On July 1, 2021, Microsoft released a security advisory for a new remote code execution (RCE) vulnerability in Windows, CVE-2021-34527, referred to publicly as “PrintNightmare.” Security researchers initially believed this vulnerability to be tied to CVE-2021-1675 (Windows Print Spooler Remote Code Execution Vulnerability), which was first disclosed in the Microsoft Patch Tuesday release on June 8, 2021. Microsoft has since updat…

Threat Brief: Windows Print Spooler RCE Vulnerability (CVE-2021-34527 AKA PrintNightmare)

Raven – Advanced Cyber Threat Map (Simplified, Customizable, Responsive)

Free Micropatches for “RemotePotato0”, a “WON’T FIX” Local Privilege Escalation Affecting all Windows Systems

ParallelNimcalls: Nim version of MDSec’s Parallel Syscall PoC

AlphaGolang – IDApython Scripts For Analyzing Golang Binaries

Editor Picks

Hunting for samAccountName Spoofing (CVE-2021–42278) & Domain Controller Impersonation

Introducing VirusTotal Collections

Kitten.gif: Meet the Sabbath Ransomware Affiliate Program, Again

Must read

Free Micropatches for “RemotePotato0”, a “WON’T FIX” Local Privilege Escalation Affecting all Windows Systems

ParallelNimcalls: Nim version of MDSec’s Parallel Syscall PoC

AlphaGolang – IDApython Scripts For Analyzing Golang Binaries

Popular categories