|
Family: Windows --> Category: infos
SMB Registry : permissions of HKLM Vulnerability Scan
Vulnerability Scan Summary Acertains the access rights of a remote key
Detailed Explanation for this Vulnerability Test
Synopsis :
System settings are writable by non admin.
Descirption :
The registry key HKEY_LOCAL_MACHINE is writeable by users who
are not in the admin group.
This allows these users to create a lot of keys on that machine,
thus they can probably to get admin easily.
Such a configuration probably means that the system has been
compromised.
Solution :
use regedt32 and set the permissions of this key to :
- admin group : Full Control
- system : Full Control
- everyone : Read
Threat Level:
High / CVSS Base Score : 7
(AV:L/AC:L/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|