To stay updated on your favorite discussions, please create an account or log in. Then, click the Bookmark icon to subscribe and receive notifications.

Protection against Print Spooler Remote Code Execution?

Options
halono
halono W/ Alumni Posts: 2 Security Scout
edited January 2022 in WithSecure Elements Endpoint Protection

Hi! My company is a new customer.

Just wondered, do F-secure protect against CVE-2021-34527 - Security Update Guide - Microsoft - Windows Print Spooler Remote Code Execution Vulnerability ? Or do we still need to check our clients?

Best Answer

  • JamesC
    JamesC W/ Partner, W/ Staff, W/ Moderator Posts: 509 Moderator
    Solved
    Options

    Hi,

    Regarding PrintNightmare (CVE-2021-34527) vulnerability - If any attacker would try to exploit this vulnerability, the DeepGuard feature present in all F-Secure endpoint products blocks this suspicious behaviour with the detection Exploit:W32/SpoolSVLaunch.A!DeepGuard. 

Answers

This discussion has been closed.

Categories