Microsoft Tries, Again, to Get in Front of Printing Vulnerabilities

After a couple of months of struggling to figure out a string of printing-related vulnerabilities, Microsoft thinks it has found the fix. It will now require admin privileges for a system feature called Point and Print.

“Our investigation into several vulnerabilities collectively referred to as ‘PrintNightmare’ has determined that the default behavior of Point and Print does not provide customers with the level of security required to protect against potential attacks,” the Microsoft Security Response Center team writes. “Today, we are addressing this risk by changing the default Point and Print driver installation and update behavior to require administrator privileges.”

Windows Intelligence In Your Inbox

Sign up for our new free newsletter to get three time-saving tips each Friday — and get free copies of Paul Thurrott's Windows 11 and Windows 10 Field Guides (normally $9.99) as a special welcome gift!

"*" indicates required fields

This field is for validation purposes and should be left unchanged.

This change was delivered in a cumulative update for all supported Windows versions as part of yesterday’s Patch Tuesday releases, and it is documented as CVE-2021-34481. This update will mitigate the publicly documented vulnerabilities in the Windows Print Spooler service, Microsoft says, but it may also “impact Windows print clients in scenarios where non-elevated users were previously able to add or update printers.”

Naturally, Microsoft believes the security risk justifies this change. And given the events of the past two months, it’s hard to disagree.

Tagged with

Share post

Please check our Community Guidelines before commenting

Conversation 8 comments

  • waethorn

    11 August, 2021 - 3:52 pm

    <p>For Microsoft, security is a "hard engineering problem".</p>

    • lvthunder

      Premium Member
      11 August, 2021 - 5:33 pm

      <p>That applies to the entire industry and not just Microsoft.</p>

  • crunchyfrog

    11 August, 2021 - 4:24 pm

    <p>Managing users’ printing has always been a pain and this won’t change that but at least the security hole should be tightened up. At least until the next one that gets discovered is exploited.</p>

  • brettscoast

    Premium Member
    12 August, 2021 - 2:52 am

    <p>Thanks for the update let’s hope this ends the nightmare :)</p>

    • arnstarr

      12 August, 2021 - 8:27 am

      <p>Or use Print to PDF. Please! </p><p>Really! </p>

  • delorean

    12 August, 2021 - 8:58 am

    <p>Its not often that I need to print something. But I absolutely dread it when I do. For the past year printing something with any of my Windows 10 computers has been an absolute act of absolute frustration. Its a 1/2 hour profanity laden dance of removing the printer from devices, reinstalling the latest driver, adding the printer again and praying that it works. The most important Windows 11 feature for me is to be able to print frustration free.</p>

    • pachi

      12 August, 2021 - 9:14 am

      <p>I feel like since win10 I need the newest drivers often or there is issues. I assume due to twice yearly OS updates. I am sure it varies printed to printer. </p>

  • Ian Gilham

    12 August, 2021 - 9:42 am

    <p>We’ve been doing the printer dance for a decade or two. There’s no reason to think that’ll ever change.</p>

Windows Intelligence In Your Inbox

Sign up for our new free newsletter to get three time-saving tips each Friday

"*" indicates required fields

This field is for validation purposes and should be left unchanged.

Thurrott © 2024 Thurrott LLC