Windows Print Spooler has been at the center of several security vulnerabilities lately, and despite Microsoft’s efforts, the problem isn’t going away.
In just over a month’s time, Microsoft has verified three security vulnerabilities tied to the Windows Print Spooler, with patches released for two of them so far. CVE-2021-34527 (aka “PrintNightmare”), CVE-2021-34481, and now CVE-2021-36958 made it possible for malicious actors to give themselves full SYSTEM privileges. Disabling the Print Spooler is an option, but this prevents you from being able to connect any printers to your computer. It’s far from an ideal solution.
“This problem has consistently affected servers and clients of Windows, from Windows 7 to 10, and servers 2019, 2004, 2012, 2008, and 2016,” said Felix Maberly, cybersecurity expert at Tiger Supplies, in an email interview with Lifewire. “All patches made by Microsoft have not been able to seal this threat.”