Windows 10 kb5004945

Fenway16

Honorable Member
Joined
Jan 6, 2017
Messages
461
Is this the correct download to stop the newest threat? Microsoft urgent appeal to update pc's as noted today.
 


Solution
If you disable the print spooler yes. This would need to be run from an elevated Powershell prompt.

Work-around to protect yourself from the issue
Code:
Stop-Service -Name 'Spooler'
Set-Service -Name 'Spooler' -StartupType Disabled


Re-enable the service
Start-Service -Name 'Spooler'
Set-Service -Name 'Spooler' -StartupType Automatic
The patch does not provide full protection from the CVE but the patch is here
You will need to download the correct patch for your particular build which you can identify by

  • Press [Windows key + r]
  • Type winver
  • Make note of the version such as 1809, 1903, 20H1,21H1
  • Download and install the appropriate patch
 


Thanks. I followed the link and found appropriate download column. I click on it and another window opens. I clicked on that and no download starts. Again, must I be on administrator account to do this download?
 


I've noticed with some browsers the links don't work correctly. When the pop-up shows up try right clicking the .msu link and select "save link as..." in Chrome/Edge
 


I went to admin account did the download and did the install. PC says it has been updated. I guess I'm all set. Thanks.
 


One more question - I read that win7 should also be patched. Is there a link I can use to get that? Thanks.
 


Windows 7 has been out of support and won't have patches.
 


Well someone on Newsmax should quit telling people to get it for win7. Not your issue obviously. Anyway, I just read a rundown on this thing and it still has vulnerabilities. There are mitigations that may help but it sounds like it's only temporary. A few of the fixes are going into the registry and inserting 0's - anyway, sounds like MS has not really patched this properly., Thanks again.
 


Correct the patch does address remote printing (primarily relating to enterprise/business environments) Local printing still is an issue with or without this patch
 


So dumb question - if I don't print until this thing is patched properly, will I be safe?
 


If you disable the print spooler yes. This would need to be run from an elevated Powershell prompt.

Work-around to protect yourself from the issue
Code:
Stop-Service -Name 'Spooler'
Set-Service -Name 'Spooler' -StartupType Disabled


Re-enable the service
Start-Service -Name 'Spooler'
Set-Service -Name 'Spooler' -StartupType Automatic
 


Solution
Well that sounds good - in the meantime can I just unplug the printer. I don't print that much so it wouldn't be a problem.
 


No it doesn't have anything to do with the printers. The problem is with the spooler service that manages print jobs.
 


Knew that would be too easy. So I have to find my way to the Services menus.
 


Press [Windows key + x]
Select Windows Powershell (admin)
Run the first two code lines from reply#11

Bottom two code lines will undo the change once it gets patched properly.
 


I went to the Services menus and found Print Spooler. The option was there to STOP the service so I did. Will that take care of it?
 


No you have to also disable it otherwise it will just start back up at next reboot.
 


ok thanks very much. Wouldn't it be lovely if there were 3 options in the services menu- stop or disable or restart.
 


I found a site that took me thru the steps to disable it which I did. They also said to go to properties and a tab for service status - here you are to click STOP in order to disable. Very confusing - it is disabled but I couldn't do the 2nd part (STOP) as the tab didn't show up in the properties menu. Anyway, I checked the printer status this morn and it says DISABLED. So hopefully, this took care of problem vulnerability. The following site is what I followed: security.uchicago.edu/printnightmare. Thanks.
 


Does it have to be STOPPED as well as DISABLED? Really need to know please...:(
 


Back
Top