By Lucas Randall, PaperCut: Before I explain software security and patching, a quick public service announcement:
If you’re a PaperCut MF/NG customer for versions 19 to 21, you need to install the latest update for two security vulnerabilities we recently found.
There’s a general issue, Spring4Shell PC-18756, affecting any software using the Spring framework. And there’s a PaperCut-specific vulnerability PaperCut MF/NG Remote Code Execution PC-18750.
Here’s a superhumanly quick guide to patching these bugs:
- Read the Spring4Shell KB
- Read the RCE PC-18750 KB
- Read the Enable Print Scripting KB
- Upgrade – like, now!
That is a veeeeeeery quick guide, for more details, please follow your usual upgrade procedure. If you’re using PaperCut MF, contact your PaperCut partner or Reseller – their info can be found in the ‘About’ tab in the PaperCut admin interface.
Now that we’ve got that out the way, I wanted to peel back the curtain a bit and demystify security vulnerabilities a little.
Click Here to Read the Rest
Source: PaperCut