{"id":89512,"date":"2021-08-01T21:11:29","date_gmt":"2021-08-01T12:11:29","guid":{"rendered":"https:\/\/softantenna.com\/wp\/?p=89512"},"modified":"2021-08-01T21:11:29","modified_gmt":"2021-08-01T12:11:29","slug":"microsoft-printnightmare-admin-privileges","status":"publish","type":"post","link":"https:\/\/softantenna.com\/blog\/microsoft-printnightmare-admin-privileges\/","title":{"rendered":"Microsoft\u306ePrintNightmare\u306f\u7d42\u308f\u3089\u305a- \u4efb\u610f\u306e\u30e6\u30fc\u30b6\u30fc\u304c\u7ba1\u7406\u8005\u6a29\u9650\u3092\u53d6\u5f97\u3067\u304d\u308b\u60aa\u7528\u65b9\u6cd5\u304c\u767a\u898b\u3055\u308c\u308b"},"content":{"rendered":"<p><img decoding=\"async\" style=\"display:block; margin-left:auto; margin-right:auto;\" src=\"https:\/\/softantenna.com\/blog\/wp-content\/uploads\/2021\/08\/pexels-photo-1440504.jpeg\" alt=\"Pexels photo 1440504\" title=\"pexels-photo-1440504.jpeg\" border=\"0\" width=\"1280\" height=\"853\" \/><\/p>\n<p>6\u6708\u306b\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u7814\u7a76\u8005\u304cWindows\u306e\u5370\u5237\u30b9\u30d7\u30fc\u30e9\u30fc\u306e\u8106\u5f31\u6027\u300c<a href=\"https:\/\/softantenna.com\/blog\/workaround-for-printnightmare\/\">PrintNightmare\uff08CVE-2021-34527\uff09<\/a>\u300d\u3092\u610f\u56f3\u305b\u305a\u516c\u958b\u3057\u3066\u3057\u307e\u3044\u3001\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u5b9f\u884c\u3084\u7279\u6a29\u306e\u6607\u683c\u304c\u53ef\u80fd\u3067\u3042\u308b\u3053\u3068\u304c\u5224\u660e\u3057\u307e\u3057\u305f\u3002<\/p>\n<p>Microsoft\u306f\u305f\u3060\u3061\u306b\u8106\u5f31\u6027\u3092\u4fee\u6b63\u3059\u308b\u305f\u3081\u306e<a href=\"https:\/\/softantenna.com\/blog\/windows-10-kb5004945-fix-printnightmare\/\">\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30d1\u30c3\u30c1\u3092\u516c\u958b<\/a>\u3057\u307e\u3057\u305f\u304c\u3001\u7814\u7a76\u8005\u305f\u3061\u306f\u3001\u7279\u5b9a\u306e\u6761\u4ef6\u4e0b\u3067\u30d1\u30c3\u30c1\u3092\u56de\u907f\u3059\u308b\u65b9\u6cd5\u3092\u3059\u3050\u306b<a href=\"https:\/\/softantenna.com\/blog\/microsoft-printnightmare-already-by-passed\/\">\u767a\u898b<\/a>\u3057\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u306b\u7d9a\u304d\u3001\u4eca\u56de\u3042\u3089\u305f\u306b\u30a4\u30f3\u30bf\u30fc\u30cd\u30c3\u30c8\u304b\u3089\u30a2\u30af\u30bb\u30b9\u53ef\u80fd\u306a\u30d7\u30ea\u30f3\u30c8\u30b5\u30fc\u30d0\u3092\u4f5c\u6210\u3057\u3001\u8ab0\u3067\u3082\u7ba1\u7406\u8005\u6a29\u9650\u3067\u30b3\u30de\u30f3\u30c9\u30d7\u30ed\u30f3\u30d7\u30c8\u3092\u958b\u304f\u65b9\u6cd5\u304c\u5b58\u5728\u3059\u308b\u3053\u3068\u304c\u308f\u304b\u308a\u307e\u3057\u305f(<a href=\"https:\/\/mspoweruser.com\/new-printnightmare-hack-means-any-user-can-gain-admin-privileges-on-their-pc\/\">MSPoweruser<\/a>)\u3002<\/p>\n<p>\u3053\u306e\u30cf\u30c3\u30af\u306fBenjamin Delpy\u6c0f\u306b\u3088\u3063\u3066\u767a\u898b\u3055\u308c\u305f\u3082\u306e\u3067\u3001\u30ea\u30e2\u30fc\u30c8\u3067\u30d7\u30ea\u30f3\u30c8\u30b5\u30fc\u30d0\u3092\u4f5c\u6210\u3057\u3001\u6a29\u9650\u304c\u5236\u9650\u3055\u308c\u305f\u30e6\u30fc\u30b6\u30fc\u3067\u30d7\u30ea\u30f3\u30bf\u30fc\u30c9\u30e9\u30a4\u30d0\u30fc\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3059\u308b\u3068\u3001\u30b7\u30b9\u30c6\u30e0\u6a29\u9650\u3067DLL\u3092\u5b9f\u884c\u3067\u304d\u308b\u4e8b\u3092\u5229\u7528\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Want to test <a href=\"https:\/\/twitter.com\/hashtag\/printnightmare?src=hash&amp;ref_src=twsrc%5Etfw\">#printnightmare<\/a> (ep 4.x) user-to-system as a service?&#x1f95d;<br \/>(POC only, will write a log file to system32)<\/p>\n<p>connect to \\\\<a href=\"https:\/\/t.co\/6Pk2UnOXaG\">https:\/\/t.co\/6Pk2UnOXaG<\/a> with<br \/>- user: .\\gentilguest<br \/>- password: password<\/p>\n<p>Open &#39;Kiwi Legit Printer - x64&#39;, then &#39;Kiwi Legit Printer - x64 (another one)&#39; <a href=\"https:\/\/t.co\/zHX3aq9PpM\">pic.twitter.com\/zHX3aq9PpM<\/a><\/p>\n<p>&mdash; &#x1f95d; Benjamin Delpy (@gentilkiwi) <a href=\"https:\/\/twitter.com\/gentilkiwi\/status\/1416429860566847490?ref_src=twsrc%5Etfw\">July 17, 2021<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/microsoft\/remote-print-server-gives-anyone-windows-admin-privileges-on-a-pc\/\">BleepingComputer<\/a>\u3067\u306f\u3001Windows 10 21H1\u306e\u30d1\u30c3\u30c1\u9069\u7528\u6e08\u307f\u306ePC\u3067\u3053\u306e\u30cf\u30c3\u30af\u3092\u30c6\u30b9\u30c8\u3057\u305f\u3068\u3053\u308d\u3001\u60aa\u610f\u306e\u3042\u308b\u30c9\u30e9\u30a4\u30d0\u30fc\u304cWindows Defender\u306b\u3088\u3063\u3066\u691c\u51fa\u3055\u308c\u305f\u4ee5\u5916\u306f\u3001\u610f\u56f3\u3057\u305f\u3068\u304a\u308a\u306b\u30b9\u30e0\u30fc\u30ba\u306b\u52d5\u4f5c\u3057\u305f\u3068\u8aac\u660e\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p><iframe title=\"vimeo-player\" src=\"https:\/\/player.vimeo.com\/video\/581584478\" width=\"640\" height=\"360\" frameborder=\"0\" allowfullscreen><\/iframe><\/p>\n<p>Microsoft\u304c\u3053\u306e\u554f\u984c\u3092\u4fee\u6b63\u3059\u308b\u307e\u3067\u306f\u3001\u5370\u5237\u30b9\u30d7\u30fc\u30e9\u30fc\u3092\u7121\u52b9\u306b\u3057\u305f\u308a\u3001\u30e6\u30fc\u30b6\u30fc\u304c\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3092\u8a31\u53ef\u3059\u308b\u30ea\u30e2\u30fc\u30c8\u30d7\u30ea\u30f3\u30bf\u30fc\u306e\u30ab\u30b9\u30bf\u30e0\u30ea\u30b9\u30c8\u3092\u4f5c\u6210\u3057\u305f\u308a\u3059\u308b\u306a\u3069\u306e\u56de\u907f\u7b56\u304c\u6709\u52b9\u3060\u3068\u8003\u3048\u3089\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>6\u6708\u306b\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u7814\u7a76\u8005\u304cWindows\u306e\u5370\u5237\u30b9\u30d7\u30fc\u30e9\u30fc\u306e\u8106\u5f31\u6027\u300cPrintNightmare\uff08CVE-2021-34527\uff09\u300d\u3092\u610f\u56f3\u305b\u305a\u516c\u958b\u3057\u3066\u3057\u307e\u3044\u3001\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u5b9f\u884c\u3084\u7279\u6a29\u306e\u6607\u683c\u304c\u53ef\u80fd\u3067\u3042\u308b\u3053\u3068\u304c\u5224\u660e\u3057\u307e\u3057\u305f\u3002 M [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":89513,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"swell_btn_cv_data":"","footnotes":""},"categories":[3],"tags":[87,3298],"class_list":["post-89512","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-windows","tag-microsoft","tag-windows"],"_links":{"self":[{"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/posts\/89512","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/comments?post=89512"}],"version-history":[{"count":0,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/posts\/89512\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/media\/89513"}],"wp:attachment":[{"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/media?parent=89512"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/categories?post=89512"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/tags?post=89512"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}