Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Windows --> Category: infos

SMB Registry : value of SFCDisable Vulnerability Scan

Vulnerability Scan Summary
Acertains the value of SFCDisable

Detailed Explanation for this Vulnerability Test

Synopsis :

Local users have full rights on the remote host.

Description :

The registry key
HKLM\SOFTWARE\Microsoft\Windows NT\WinLogon\SFCDisable has its
value set to a value other than 0 or 4.

Any value other than 0 or 4 disables the Windows File Protection,
which allows any user on the remote host to view / modify any file
he wants.

This probably means that this host has been compromised.

Solution :

Set the value of this key to 0. You should reinstall this host

See also :

Threat Level:

High / CVSS Base Score : 7

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.