CERT NZ has issued an advisory regarding vulnerabilities in the Microsoft Windows Print Spooler service.

Whilst Microsoft has released security updates since these vulnerabilities were first identified, additional mitigations may be needed.

Cyber attackers may take advantage of these vulnerabilities, allowing them to elevate their privilege to a system level where they can execute system level commands.

Windows devices with the Domain Controller role applied and all supported versions of Windows (server and desktop) with the Print Spooler service enabled are affected.

Please read CERT NZ’s advisory for more information.