Discover and read the best of Twitter Threads about #kb5004945

Most recents (1)

Profile picture
Luca
@lukeasec
Few things you could do with the Print Spool service even before #printnightmare

0/6
The so called #printerbug allowed an attacker to get the NetNTLM hash of the affected server. Depending on the computer account privileges, this could lead to full domain compromise: dionach.com/blog/printer-s…

1/6
By design, some systems need to have local administrator privileges to the other, like on the Exchange Trusted Subsystem group. No SMB signing + printerbug + ntlmrelayx = Exchange server compromise, which basically means a full compromise due to exchange group privileges.

2/6
Read 8 tweets

Related hashtags

#printerbug #KB5004945 #printnightmare

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!