Create CVE-2021-34481 소개

4RG0S · Jul 17, 2021 · 3292d2e · 3292d2e
1 parent fd707b5
commit 3292d2e
Showing 1 changed file with 16 additions and 0 deletions.
diff --git a/202002503_배준서_V0xe1/CVE-2021-34481 소개 b/202002503_배준서_V0xe1/CVE-2021-34481 소개
@@ -0,0 +1,16 @@
+분석 대상 : CVE-2021-34481
+릴리스 날짜 : 2021.07.15
+
+설명 : Windows Print Spooler Elevation of Privilege Vulnerability
+
+An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations.
+An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges.
+An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
+
+An attacker must have the ability to execute code on a victim system to exploit this vulnerability.
+
+The workaround for this vulnerability is stopping and disabling the Print Spooler service.
+
+
+Windows의 Print Spooler서비스가 권한이 존재하는 파일 작업을 부적절하게 수행할 때, 권한상승 취약점이 존재합니다.
+성공적으로 이를 악용하면 SYSTEM권한으로 임의의 공격용 코드를 실행할 수 도 있습니다.