Back to board Open MSRC
MSRC compact vulnerability detail

CVE-2024-38199 · Windows Line Printer Daemon (LPD) Service Remote Code Execution Vulnerability

No description was published by MSRC.

Severity
Important
Impact
Remote Code Execution
CVSS
9.8 base · 8.5 temporal
Release
2024-08-13
Signals
Line Printer Daemon Service (LPD) Remote Code Execution Exploited: No Publicly disclosed: Yes Exploitability: Exploitation Less Likely
CWE
CWE-416: Use After Free
Patch Diff
Loading module diff metadata...
Resolved binary override
Use this when the MSRC module name cannot be mapped automatically or the resolved binary looks wrong.
Old version New version
Description
No description was published by MSRC.
FAQ / Articles
Mitigation
The following mitigating factors might be helpful in your situation: Users are advised against installing or enabling the Line Printer Daemon (LPD) service. The LPD is not installed or enabled on the systems by default. The LPD has been announced as deprecated since Windows Server 2012. Please refer to: Features Removed or Deprecated in Windows Server 2012.
FAQ
How could an attacker exploit this vulnerability? An unauthenticated attacker could send a specially crafted print task to a shared vulnerable Windows Line Printer Daemon (LPD) service across a network. Successful exploitation could result in remote code execution on the server.
FAQ
Windows 11, version 24H2 is not generally available yet. Why are there updates for this version of Windows listed in the Security Updates table? The new Copilot+ devices that are now publicly available come with Windows 11, version 24H2 installed. Customers with these devices need to know about any vulnerabilities that affect their machine and to install the updates if they are not receiving automatic updates. Note that the general availability date for Windows 11, version 24H2 is scheduled for later this year.