Applies to: Lasernet 9, Lasernet Core 10
Note
This article describes a software version that is no longer supported. Although the software will no longer receive updates or technical support, existing documentation, such as this article, will be retained for reference purposes but will no longer be updated. If you have any questions, contact Lasernet Support.
There have been some recent published recommendations from Microsoft regarding the PrintNightmare threat. This involves a Windows Print Spooler remote code execution vulnerability.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527
Multiple components of Lasernet (beyond just the physical printing of documents) rely on the Print Spooler Service to be able to function successfully and so deactivating the Spooler Service means that the Lasernet server becomes unusable. If users deactivate the LPD service, the Lasernet server will not receive any jobs (from AS400, for example).
In summary, the Lasernet service depends on the Print Spooler Service to function, so we recommend that it is not deactivated on the Lasernet server.
Update
This exploit has been patched on 21/09/2021 with patch KB5005625, any machine updated since then should not be affected by this vulnerability.