Microsoft Windows PostScript and PCL6 Class Printer Driver code execution [CVE-2023-24925]
Microsoft Windows could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a flaw in the PostScript and PCL6 Class Printer Driver components.
By sending a specially crafted XPS file to a shared printer, an attacker could exploit this vulnerability to execute arbitrary code on the system.
An authenticated attacker with normal privileges could send a modified XPS file to a shared printer, which can result in a remote code execution.
Use Microsoft Windows Automatic Update to apply the appropriate patch for your system.
Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.