question

RogerRoger-2394 avatar image
0 Votes"
RogerRoger-2394 asked DSPatrick edited

windows update

Hi All

will the update KB5003671 fix the Windows Print Spooler Remote Code Execution Vulnerability i.e CVE-2021-1675 and CVE-2021-34527. please guide me with exact MS updates need to be deployed for CVE-2021-1675 and CVE-2021-34527 on windows 2019/2016/2012R2 servers.

windows-serverwindows-server-2019windows-server-2016windows-server-2012windows-server-management
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

JennyFeng-MSFT avatar image
0 Votes"
JennyFeng-MSFT answered

@RogerRoger-2394
Hi,
Microsoft has now started rolling out out-of-band Windows updates to remedy a PrintNightmare security bug affecting all supported versions of Windows 10.
The security update for Windows Server 2012, Windows Server 2016 and Windows 10, Version 1607 have been released.
For Windows Server 2016:
https://support.microsoft.com/en-us/topic/july-7-2021-kb5004948-os-build-14393-4470-out-of-band-fb676642-a3fe-4304-a79c-9d651d2f6550
For Windows Server 2012 R2:
https://support.microsoft.com/en-us/topic/july-6-2021-kb5004954-monthly-rollup-out-of-band-8e7742b6-8a42-41ab-86dd-0dd0b36b4139
For Windows 10, Version 1607
https://support.microsoft.com/en-us/topic/july-7-2021-kb5004948-os-build-14393-4470-out-of-band-fb676642-a3fe-4304-a79c-9d651d2f6550
You could refer the following link for more info:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527
Hope above information can help you.

============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered DSPatrick edited

No, the June update would not, but the July update does.
https://support.microsoft.com/en-us/topic/july-6-2021-kb5004954-monthly-rollup-out-of-band-8e7742b6-8a42-41ab-86dd-0dd0b36b4139

Addresses a remote code execution exploit in the Windows Print Spooler service, known as “PrintNightmare”, as documented in CVE-2021-34527. After installing this and later Windows updates, users who are not administrators can only install signed print drivers to a print server

Server 2019 out of band
https://support.microsoft.com/en-us/topic/july-6-2021-kb5004947-os-build-17763-2029-out-of-band-71994811-ff08-4abe-8986-8bd3a4201c5d


--please don't forget to upvote and Accept as answer if the reply is helpful--





5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

RogerRoger-2394 avatar image
0 Votes"
RogerRoger-2394 answered

for windows server 2012R2 KB5004954 is the fix.
for windows server 2019 KB5004947 needs to be updated.
for windows server 2016 is there any update

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered DSPatrick edited

for windows server 2012R2 KB5004954 is the fix.

Yes, correct
https://support.microsoft.com/en-us/topic/july-6-2021-kb5004954-monthly-rollup-out-of-band-8e7742b6-8a42-41ab-86dd-0dd0b36b4139


for windows server 2019 KB5004947 needs to be updated.

This out of band update addresses issue
https://support.microsoft.com/en-us/topic/july-6-2021-kb5004947-os-build-17763-2029-out-of-band-71994811-ff08-4abe-8986-8bd3a4201c5d

for windows server 2016 is there any update

and this new out of band just released for Server 2016 v1607.
https://support.microsoft.com/en-us/topic/july-7-2021-kb5004948-os-build-14393-4470-out-of-band-fb676642-a3fe-4304-a79c-9d651d2f6550

--please don't forget to upvote and Accept as answer if the reply is helpful--













5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.