Our investigation into several vulnerabilities collectively referred to as “PrintNightmare” has determined that the default behavior of Point and Print does not provide customers with the level of security required to protect against potential attacks. Today, we are addressing this risk by changing the default Point and Print driver installation and update behavior to require administrator privileges. The installation of this update with default settings will mitigate the publicly documented vulnerabilities in the Windows Print Spooler service. To change this, head to Settings > Devices > Printers & Scanners and uncheck the Let Windows manage my default printer option. This change will take effect with the installation of the security updates released on Augfor all supported versions of Windows, and is documented as CVE-2021-34481. Scroll the Printers & Scanners page to the bottom. On the Devices page, in the left sidebar, click Printers & Scanners. Do this by pressing Windows+i keys together. This change may impact Windows print clients in scenarios where non-elevated users were previously able to add or update printers. Set the Default Printer on Windows 10 To make a printer the default on Windows 10, first, open the Settings app. While not recommended, customers can manually disable this mitigation with a registry key, which is outlined in the following KB Article: However, we strongly believe that the security risk justifies this change. Windows 11 comes with a feature that automatically sets the printer you used most recently to be your default printer.
0 kommentar(er)
