windows update

Question

Hi All

will the update KB5003671 fix the Windows Print Spooler Remote Code Execution Vulnerability i.e CVE-2021-1675 and CVE-2021-34527. please guide me with exact MS updates need to be deployed for CVE-2021-1675 and CVE-2021-34527 on windows 2019/2016/2012R2 servers.

Accepted Answer

@Roger Roger
Hi,
Microsoft has now started rolling out out-of-band Windows updates to remedy a PrintNightmare security bug affecting all supported versions of Windows 10.
The security update for Windows Server 2012, Windows Server 2016 and Windows 10, Version 1607 have been released.
For Windows Server 2016:
https://support.microsoft.com/en-us/topic/july-7-2021-kb5004948-os-build-14393-4470-out-of-band-fb676642-a3fe-4304-a79c-9d651d2f6550
For Windows Server 2012 R2:
https://support.microsoft.com/en-us/topic/july-6-2021-kb5004954-monthly-rollup-out-of-band-8e7742b6-8a42-41ab-86dd-0dd0b36b4139
For Windows 10, Version 1607
https://support.microsoft.com/en-us/topic/july-7-2021-kb5004948-os-build-14393-4470-out-of-band-fb676642-a3fe-4304-a79c-9d651d2f6550
You could refer the following link for more info:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527
Hope above information can help you.

============================================

If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread

Answer

No, the June update would not, but the July update does.
https://support.microsoft.com/en-us/topic/july-6-2021-kb5004954-monthly-rollup-out-of-band-8e7742b6-8a42-41ab-86dd-0dd0b36b4139

Addresses a remote code execution exploit in the Windows Print Spooler service, known as “PrintNightmare”, as documented in CVE-2021-34527. After installing this and later Windows updates, users who are not administrators can only install signed print drivers to a print server