关于 Windows Print Spooler 远程代码执行漏洞的风险提示

发布者:孟婧发布时间:2021-07-08浏览次数:228

关于 Windows Print Spooler 远程代码执行漏洞的风险提示

各校园网用户:

微软在20216月的安全更新中修复了其 Windows 操作系统后台打印服务Windows Print Spooler 的远程代码执行漏洞(CVB-2021-1675), Windows Print Spooler 管理所有本地和网络打印队列,控制所有打印工作。攻击者利用该漏洞可绕过安全检查在目标设备上安装恶意驱动程序。鉴于漏洞危害较大且相关漏洞利用代码已公开,请各二级学院、各部门排查是否部署了受影响的微软产品,及时安装官方补丁程序,做好风险防范,以免发生安全事件。

漏洞影响范围:

Windows Server 2019( Server Core installation )

Windows Server 2019

Windows Server 2016( Server Core installation )

Windows Server 2016

Windows Server 2012 R2( Server Core installation )

Windows Server 2012 R2

Windows Server 2012( Server Core installation )

Windows Server 2012

Windows Scrver 2008 R2 for x64-based Systems Service Pack 1 ( Server Core installation )

Windows Scrver 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 for x64-based Systems Service Pack 2( Server Core installation )

Windows Server 2008 for x64-based Systems Service Pack 2

Windows Server 2008 for 32-bit Systems Service Pack 2( Server Core installation )

Windows Server 2008 for 32-bitSystems Service Pack 2

Windows Server ,version 2004( Server , Core insta1lation)

Windows RT8.1

Windows 8.1 for x64-bascd systems

Windows 8.1for 32-bit systems

Windows 7 for x64-based Systems Service Pack 1

Windows 7 for 32-bit Systems Service Pack 1

Windows 10 Version 1607 for x64-based Systems Windows 10Version 1607 for 32-bit Systems Windows 10 for x64-based Systems

Windows 10 for 32-bit Systems

Windows Server , version 20H2 ( Server , Core Installation )

Windows 10 Version 20H2 for ARM64-based Systems

Windows 10 Version 2OH2 for 32-bit Systems

Windows 10Version 2OH2 for x64-based Systems

Windows 10 Version 2004 for x64-based Systems

Windows 10 Version 2004 for ARM64-based Systems

Windows 10 Version 2004 for 32-bit Systems

Windows 10 Version 21H1 for 32-bit Systems

Windows 10 Version 21H1 for ARM64-based Systems

Windows 10 Version 21Hl for x64-based Systems

Windows 10 Version 1909 for ARM64-based Systems

Windows 10 Version 1909 for x64-based Systems

Windows 10 Version 1909 for 32-bit Systems

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems

【处置措施】

微软已发布更新补丁 ,建议从微软官方下载对应的补丁程序进行漏洞修复。

微软补丁程序下载地址:https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1675