|
Family: Windows --> Category: infos
SMB Registry : permissions of keys that can change common paths Vulnerability Scan
Vulnerability Scan Summary Acertains the access rights of remote keys
Detailed Explanation for this Vulnerability Test
Synopsis :
Local users can gain SYSTEM rights.
Description :
Some SYSTEM registry keys can be written by non administrator.
These keys contain paths to common programs and DLLs. If a user
can change a path, then he may put a trojan program into another
location (say C:/temp) and point to it.
Solution :
Use regedt32 and set the permissions of this key to :
- admin group : Full Control
- system : Full Control
- everyone : Read
Threat Level:
High / CVSS Base Score : 7
(AV:L/AC:L/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|