Posted on 2020-05-14 by guenni
There is a CVE-2020-1048 vulnerability in Windows print spooler that could allow malicious software to gain elevated privileges. But a patch is available since May 12, 2020, and there are a few restriction to misuse that flaw. Here is a brief overview what to know, including a discussion, how critical the vulnerability is.
Windows Print Spooler vulnerability CVE-2020-1048
CVE-2020-1048 is a privilege escalation vulnerability in Windows print spooler service that allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could execute arbitrary code with elevated system privileges. An attacker could then install programs, view, modify, or delete data, or create new accounts with full user privileges.
However, to exploit this vulnerability, an attacker would have to log on to an affected system and execute a specially crafted script or application. Microsoft does not believe that this vulnerability is likely to be exploited. However, on patchday May 12, 2020, the company released security updates for Windows 7 through Windows 10 and the server counterparts to address the vulnerability. The list of updates can be found on this page. Additionally, the Windows security updates for the May 2020 patchday are listed in my articles at the end of this article.