SEIKO EPSON Printer Drivers for Windows Improper Access Permissions Allowing Arbitrary Code Execution
Vulnerability
A vulnerability exists in multiple SEIKO EPSON printer drivers for Windows when installed or used in a language other than English. The drivers have improper access permission settings that can be exploited to overwrite certain DLL files with all account privileges. This flaw could allow an attacker to execute arbitrary code with SYSTEM privileges on the affected Windows system.
Impact
Exploitation of this vulnerability could lead to unauthorized execution of arbitrary code with SYSTEM privileges on the affected Windows machine.
Remediation
Users can apply the Epson Printer Driver Security Support Tool, available as a standalone download or through the Epson Software Updater, to address this vulnerability. For those using Epson Software Updater, the tool will be automatically installed after downloading. Additionally, Epson plans to release updated printer drivers addressing this vulnerability for various models starting in mid-June 2025.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.