CVE-2020-1048

Name of the Vulnerable Software and Affected Versions Windows Print Spooler (affected versions not specified)

Description An elevation of privilege issue exists within the Windows Print Spooler service. The service improperly allows arbitrary writing to the file system, potentially allowing an attacker to execute code with elevated system privileges. An attacker could then install programs, view, change, or delete data, or create new accounts with full user rights. Exploitation requires an attacker to log on to an affected system and execute a specially crafted script or application. The Print Spooler can be tricked into writing to system files through printer API calls. Tools like PrintDemon, a PowerShell script, have been developed to exploit this issue and gain system-level privileges via printer manipulation and embedded C# code. The vulnerability involves deficiencies in access control within the Print Spooler component.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.