Microsoft releases emergency patch for Windows that fixes critical PrintNightmare vulnerability

The update is even out for Windows 7, which is officially no longer supported.

Microsoft Corp. has begun releasing an emergency patch for Windows that fixes a critical bug in the Windows Print Queue Manager service. “We recommend that you install this update immediately,” the company says on its Web site.

The vulnerability, dubbed PrintNightmare, was discovered last week after security researchers accidentally published experimental exploit code (PoC) on GitHub.

Microsoft rated the vulnerability as critical because attackers could use it to remotely execute code with system-level privileges on affected devices.

Because the Print Queue Manager service runs by default in Windows, Microsoft was forced to release patches for Windows Server 2019, Windows Server 2012 R2, Windows Server 2008, Windows 8.1, Windows RT 8.1 and various versions of Windows 10. What’s more, the company decided to fix the vulnerability even in Windows 7, whose support was discontinued last year.

So far, the company has not released an update only for Windows Server 2012, Windows Server 2016 and Windows 10 version 1607. For them, security updates will be released in the near future.