Protection against Print Spooler Remote Code Execution?

halono

Hi! My company is a new customer.

Just wondered, do F-secure protect against CVE-2021-34527 - Security Update Guide - Microsoft - Windows Print Spooler Remote Code Execution Vulnerability ? Or do we still need to check our clients?

James Chang

Hi,

Regarding PrintNightmare (CVE-2021-34527) vulnerability - If any attacker would try to exploit this vulnerability, the DeepGuard feature present in all F-Secure endpoint products blocks this suspicious behaviour with the detection Exploit:W32/SpoolSVLaunch.A!DeepGuard. 

halono

thanks!