|
Family: Windows --> Category: infos
SMB Registry : missing winreg Vulnerability Scan
Vulnerability Scan Summary Acertains if the winreg key is present
Detailed Explanation for this Vulnerability Test
Synopsis :
Everyone can access the remote registry.
Description :
The registry key HKLM\SYSTEM\CurrentControlSet\Control\SecurePipeServers\Winreg
is missing.
This key allows you to define what can be viewed in the registry by
non administrators.
Solution : install service pack 3 if not done already, and create
and create
SYSTEM\CurrentControlSet\Control\SecurePipeServers\Winreg\AllowedPaths
Under this key, create the value 'Machine' as a REG_MULTI_SZ and
put in it what you allow to be browsed remotely.
See also :
http://www.microsoft.com/technet/prodtechnol/winntas/maintain/mngntreg/admreg.asp
Threat Level:
Medium / CVSS Base Score : 5
(AV:L/AC:L/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|