Printnightmare flaw in Windows that can allow remote code execution and all sorts of generally bad things to happen. This is through the print spooler service that runs in Windows even if you don’t have a printer attached or installed.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527
If Computer is not used for printing disable the spooler service.
Step 1. Search Powershell in window shell –
Step 2. Powershell will appear right click on it and click on Run as Administrator
Step 3. A blue screen will appear if “PS C:\WINDOWS\system32>” doesn’t appear – Press enter in blue screen
Step 4. Copy & paste or Type Following Command in Windows PowerShell blue window
Get-Service -Name Spooler
You will find Spooler Status as Running
Step 5. Now Run the following command to Stop Spooler Service
Stop-Service -Name Spooler -Force
Step 6. Now Run the following command to Disable Spooler Service
Set-Service -Name Spooler -StartupType Disabled
Step 7 Run first Command again to check the status of Spooler Service
Get-Service -Name Spooler
Status value should be Stopped.
After this, your computer will be protected, but you won’t be able to print locally or remotely.
If you want to start printing again use this command
Set-Service -Name Spooler -StartupType AutomaticStart-Service -Name SpoolerCase 2. Computer is connected to Printer
Follow this link and check Disable Print Spooler Using Group Policy Editor
