First published: Wed Aug 11 2021(Updated: )
The Canon TR150 print driver through 3.71.2.10 is vulnerable to a privilege escalation issue. During the add printer process, a local attacker can overwrite CNMurGE.dll and, if timed properly, the overwritten DLL will be loaded into a SYSTEM process resulting in escalation of privileges. This occurs because the driver drops a world-writable DLL into a CanonBJ %PROGRAMDATA% location that gets loaded by printisolationhost (a system process).
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Canon Pixma Tr150 Firmware | <=3.71.2.10 | |
Canon Pixma Tr150 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-38085 is a vulnerability in the Canon TR150 print driver through version 3.71.2.10 that allows a local attacker to escalate privileges.
During the add printer process, a local attacker can overwrite CNMurGE.dll, which can be loaded into a SYSTEM process, resulting in privilege escalation.
CVE-2021-38085 has a severity rating of 7.8 (high).
To fix CVE-2021-38085, update the Canon TR150 print driver to version 3.71.2.11 or later.
No, the Canon Pixma TR150 is not affected by CVE-2021-38085.