Microsoft issued an emergency out-of-band update to fix Windows Print Spooler vulnerability. Remote code execution exploit can be bypassed in certain scenarios, allowing attackers to run arbitrary code on infected systems.
Microsoft has expanded patches for the so-called PrintNightmare vulnerability for Windows 10 version 1607, Windows Server 2012, and Windows Server 2016. The fix for the vulnerability can also bypasses the security protections in certain situations, experts say.
The issue was accidentally disclosed by researchers from Hong Kong-based cybersecurity firm Sangfor late last month, at which point it emerged that the issue was different from another bug that was patched by Microsoft on June 8.