There have been some recent published recommendations from Microsoft regarding the 'PrintNightmare' threat. This involves a Windows Print Spooler remote code execution vulnerability.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527
Multiple components of Lasernet (beyond just the physical printing of documents) rely on the Print Spooler Service to be able to function successfully and so deactivating the Spooler Service means that the Lasernet server becomes unusable. If users deactivate the LPD service, the Lasernet server will not receive any jobs (from AS400 for example).
In summary, the Lasernet service depends on the Print Spooler Service to function, so we recommend that it is not deactivated on the Lasernet server.
This exploit has been patched on 21/09/2021 with patch “KB5005625”, any machine updated since then should not be affected by this vulnerability.
Add a comment
Please log in or register to submit a comment.