{"id":225182,"date":"2023-02-01T10:12:00","date_gmt":"2023-02-01T07:12:00","guid":{"rendered":"https:\/\/geek.mediadoma.com\/?p=225182"},"modified":"2023-02-01T10:14:26","modified_gmt":"2023-02-01T07:14:26","slug":"printnightmare-elab-taenu-lunavara-ruendajatele-edasi","status":"publish","type":"post","link":"https:\/\/geek.mediadoma.com\/et\/printnightmare-elab-taenu-lunavara-ruendajatele-edasi\/","title":{"rendered":"PrintNightmare elab t\u00e4nu lunavara r\u00fcndajatele edasi"},"content":{"rendered":"<p><a href=\"https:\/\/www.shutterstock.com\/image-photo\/computer-programmer-hacker-prints-code-on-1166453734\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">JARIRIYAWAT \/ Shutterstock.com<\/a><\/p>\n<p>Vaatamata Microsofti <a href=\"https:\/\/www.reviewgeek.com\/91602\/microsofts-janky-printnightmare-patch-disables-some-printers\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">arvukatele katsetele<\/a> PrintNightmare&#8217;i <a href=\"https:\/\/geek.mediadoma.com\/et\/vaerskendus-see-ei-toeoeta-printnightmarei-haavatavuse-parandamiseks-vaerskendage-oma-windowsi-arvutit-kohe\/\" title=\"edukalt parandada\">edukalt parandada<\/a>, pole see ikka veel l\u00f5ppenud. N\u00fc\u00fcd on paljastatud veel \u00fcks Windows 10 PrintNightmare Print Spooleri haavatavus ja see <a href=\"https:\/\/www.windowscentral.com\/windows-10-printnightmare-isnt-over-after-all-and-ransomware-attackers-are-taking-note\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">meelitab ligi lunavarar\u00fcndajaid<\/a>, kes otsivad lihtsat juurdep\u00e4\u00e4su s\u00fcsteemi\u00f5igustele.<\/p>\n<p>Microsoft andis juulis ja augustis v\u00e4lja mitu plaastrit haavatavuse k\u00f5rvaldamiseks ja kohandas protsessi, mille abil kasutajad saavad uusi printeridraiveriid installida. Teadlased <a href=\"https:\/\/vimeo.com\/578617278\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">leidsid siiski lahenduse<\/a> r\u00fcnnaku k\u00e4ivitamiseks uuema prindispuuleri haavatavuse kaudu, mille nimi on CVE-2021-36958.<\/p>\n<p>Microsoft kirjeldab Microsofti turvareageerimiskeskuse postituses haavatavust j\u00e4rgmiselt: \u201eKui Windowsi prindispuuleri teenus sooritab privilegeeritud failitoiminguid valesti, tekib koodi kaugk\u00e4itamise haavatavus <a href=\"https:\/\/click.linksynergy.com\/deeplink?id=2QzUaswX1as&amp;mid=24542&amp;u1=rg\/94848&amp;murl=https%3A%2F%2Fmsrc.microsoft.com%2Fupdate-guide%2Fvulnerability%2FCVE-2021-36958\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">.<\/a> Seda haavatavust edukalt \u00e4ra kasutanud r\u00fcndaja v\u00f5ib k\u00e4ivitada suvalise koodi S\u00dcSTEEMI \u00f5igustega. R\u00fcndaja v\u00f5ib seej\u00e4rel programme installida; andmete vaatamine, muutmine v\u00f5i kustutamine; v\u00f5i looge uusi kontosid t\u00e4ielike kasutaja\u00f5igustega.&quot;<\/p>\n<p>Microsoft loetleb haavatavuse lahendamiseks ka &quot;Prindispuuleri teenuse peatamise ja keelamise&quot;. R\u00fcndaja vajab vajalike printeridraiverite installimiseks administraatori\u00f5igusi; kui draiver on juba installitud, pole sellised \u00f5igused printeri \u00fchendamiseks vajalikud. Lisaks ei n\u00f5uta klientide draiverite installimist, seega j\u00e4\u00e4b haavatavus haavatavaks igal juhul, kui kasutaja loob \u00fchenduse kaugprinteriga.<\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/microsoft\/microsoft-confirms-another-windows-print-spooler-zero-day-bug\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Lunavarar\u00fcndajad kasutavad Bleeping Computeri<\/a> andmetel loomulikult \u00e4rakasutamist t\u00e4ielikult. CrowdStrike teatas hiljuti <a href=\"https:\/\/www.crowdstrike.com\/blog\/magniber-ransomware-caught-using-printnightmare-vulnerability\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">lunavarar\u00fchma Magniberi<\/a> avastamise katsest L\u00f5una-Korea ohvrite vastu paigatamata turvaauke \u00e4ra kasutada.<\/p>\n<p>Pole veel \u00fchtegi s\u00f5na \u2013 Microsoftilt ega mujalt \u2013 selle kohta, kas PrintNightmare&#8217;i haavatavus on \u00fcldse k\u00e4es. Tegelikult <a href=\"https:\/\/www.crowdstrike.com\/blog\/magniber-ransomware-caught-using-printnightmare-vulnerability\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">hindab CrowdStrike<\/a>, &quot;et PrintNightmare&#8217;i haavatavust koos lunavara juurutamisega kasutavad t\u00f5en\u00e4oliselt ka edaspidi teised ohus osalejad.&quot;<\/p>\n<p><a href=\"https:\/\/www.windowscentral.com\/windows-10-printnightmare-isnt-over-after-all-and-ransomware-attackers-are-taking-note\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Windows Centrali<\/a> kaudu<a href=\"https:\/\/www.windowscentral.com\/windows-10-printnightmare-isnt-over-after-all-and-ransomware-attackers-are-taking-note\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external\"><\/a><\/p>\n<p><div id=\"PostUnique_PostSource\" style=\"padding-top: 50px\">:  <a target=\"_blank\" rel=\"noopener nofollow\" href=\"\/\/www.reviewgeek.com\" class=\"external external_icon\">www.reviewgeek.com<\/a><\/div><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Vaatamata Microsofti arvukatele katsetele PrintNightmare&#8217;i edukalt parandada, pole see ikka veel l\u00f5ppenud. N\u00fc\u00fcd on paljastatud veel \u00fcks Windows 10 PrintNightmare Print Spooleri haavatavus ja see meelitab ligi lunavarar\u00fcndajaid, kes otsivad lihtsat juurdep\u00e4\u00e4su s\u00fcsteemi\u00f5igustele.<\/p>\n","protected":false},"author":1,"featured_media":152862,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wp_rev_ctl_limit":""},"categories":[735,735,724,754,724,754],"tags":[],"class_list":["post-225182","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-mitmesugused","category-uudis","category-turvalisus"],"_links":{"self":[{"href":"https:\/\/geek.mediadoma.com\/et\/wp-json\/wp\/v2\/posts\/225182","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/geek.mediadoma.com\/et\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/geek.mediadoma.com\/et\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/geek.mediadoma.com\/et\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/geek.mediadoma.com\/et\/wp-json\/wp\/v2\/comments?post=225182"}],"version-history":[{"count":0,"href":"https:\/\/geek.mediadoma.com\/et\/wp-json\/wp\/v2\/posts\/225182\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/geek.mediadoma.com\/et\/wp-json\/wp\/v2\/media\/152862"}],"wp:attachment":[{"href":"https:\/\/geek.mediadoma.com\/et\/wp-json\/wp\/v2\/media?parent=225182"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/geek.mediadoma.com\/et\/wp-json\/wp\/v2\/categories?post=225182"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/geek.mediadoma.com\/et\/wp-json\/wp\/v2\/tags?post=225182"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}