Forum Discussion
mattyb90235
Jan 30, 2024Copper Contributor
Prnproc$ Share on Windows Print Server
Hi all, I was wondering if anyone had some information in regards to the pronproc$ share on Windows print servers? I am running a Windows Server 2019 instance and had the share flag as a potential vulnerability for allowing read & execute on the share. From what I can see the built-in users group has this permission on the share. Is this share something the can be locked down for privileges or will it break the functionality of the server's services?
- Deleted
mattyb90235 please consult the recommendations published in the context of CVEs "Printing Nightmare". Microsoft provided guidance how to improve security on Print servers, including permissions, Group Policies. Also guidance when to forcefully disable printing capabilities for good, when not needed.
Hope this give you a hint.
CVE-2021-34527 - Security Update Guide - Microsoft - Windows Print Spooler Remote Code Execution Vulnerability