Microsoft Windows Print Spooler Service "GetPrinterData" DoS Vulnerability

Microsoft Windows Print Spooler Service “GetPrinterData” Denial of Service Vulnerability
http://www.frsirt.com/english/advisories/2006/4827


A vulnerability has been identified in Microsoft Windows, which could be exploited by attackers to cause a denial of service. This flaw is due to an error in the Print Spooler service (Spoolsv.exe) that does not properly handle specially crafted “GetPrinterData()” requests, which could be exploited by attackers to cause a vulnerable system to crash, creating a denial of service condition.


Affected Products
Microsoft Windows 2000 Service Pack 4


Solution
Disable the Print Spooler service by using the following command : sc stop Spooler & sc config Spooler start=disabled


The FrSIRT is not aware of any official supplied patch for this issue.

Leave a Reply