Update Microsoft to require admin rights before using Windows Point and Print feature

Correlate

Level 16
Verified
May 4, 2019
736
Microsoft has released a security update today that will change the default behavior of the "Point and Print" feature to mitigate a severe security issue disclosed last month.

First added in Windows 2000, the Point and Print feature works by connecting to a print server to download and install necessary print drivers every time a user creates a connection to a remote printer without providing installation media.

Earlier this year, Jacob Baines, a reverse engineer for Dark Wolf Solutions (currently at Dragos), found that threat actors inside a company's network could abuse the Point and Print feature to run a malicious print server and force Windows systems to download and install malicious drivers.
 
Top