[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*


oval:org.secpod.oval:def:18734
The 'Network access: Allow anonymous SID/Name translation' setting should be configured correctly.

oval:org.secpod.oval:def:7707
Microsoft Windows Server 2008 R2 is installed

oval:org.secpod.oval:def:7964
The Password protect the screen saver setting should be configured correctly.

oval:org.secpod.oval:def:7966
The Screen Saver timeout setting should be configured correctly.

oval:org.secpod.oval:def:7985
Requirement : 2.3.c Verify that administrator access to the web-based management interfaces is encrypted with strong cryptography.

oval:org.secpod.oval:def:8712
Network security: Minimum session security for NTLM SSP based (including secure RPC) client applications.

oval:org.secpod.oval:def:8713
Network security: Minimum session security for NTLM SSP based (including secure RPC) server applications.

oval:org.secpod.oval:def:8714
The 'Access this computer from the network' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8717
The 'Change the system time' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8719
The 'Load and unload device drivers' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8720
The 'Deny log on as a service' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8721
The 'Act as part of the operating system' user right should be assigned to the appropriate accounts

oval:org.secpod.oval:def:8728
The 'Bypass traverse checking' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8733
The 'Shut down the system' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8734
The 'Profile single process' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8742
The 'Increase a process working set' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8743
The 'Log on as a batch job' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8745
Noone may modify an object label.

oval:org.secpod.oval:def:8749
The 'Replace a process level token' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8753
The 'Enable computer and user accounts to be trusted for delegation' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8758
The 'Modify firmware environment values' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8770
The built-in Guest account should be correctly named.

oval:org.secpod.oval:def:8775
The 'Create a token object' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8778
The 'Force shutdown from a remote system' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8781
The 'Create global objects' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8783
The 'Create permanent shared objects' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8786
The 'Restore files and directories' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8798
The 'Adjust memory quotas for a process' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8799
The 'Allow log on locally' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8801
The 'Allow log on through Remote Desktop Services' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8802
The "add workstations to domain" user right should be assigned to the correct accounts.

oval:org.secpod.oval:def:8805
The 'Back up files and directories' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8810
The 'Change the time zone' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8815
Administrators may create symbolic links

oval:org.secpod.oval:def:8816
The 'System settings: Optional subsystems' setting should be configured correctly.

oval:org.secpod.oval:def:8817
The 'Debug programs' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8825
The 'Network access: Remotely accessible registry paths' setting should be configured correctly.

oval:org.secpod.oval:def:8826
The 'Take ownership of files or other objects' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8828
The 'Remove computer from docking station' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8851
The "Turn off Autoplay" machine setting should be configured correctly.

oval:org.secpod.oval:def:8904
The "Configure Windows NTP Client" machine setting should be configured correctly.

oval:org.secpod.oval:def:8921
The 'Create a pagefile' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8922
The 'Impersonate a client after authentication' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8923
The 'Increase scheduling priority' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8821
The 'Network access: Remotely accessible registry paths and sub-paths' setting should be configured correctly.

oval:org.secpod.oval:def:8827
The 'Lock pages in memory' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:18967
The "Synchronize directory service data" setting should be configured correctly.

oval:org.secpod.oval:def:8924
The 'Perform volume maintenance tasks' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8722
The 'Generate security audits' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8718
The 'Profile system performance' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:18921
The 'Log on as a service' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:10955
The host is installed with Microsoft Internet Explorer 8 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:7962
Enables desktop screen savers. If you disable this setting, screen savers do not run. Also, this setting disables the Screen Saver section of the Screen Saver dialog in the Personalization or Display Control Panel. As a result, users cannot change the screen saver options. If you do not configure ...

oval:org.secpod.oval:def:18916
The 'Interactive logon: Require smart card' setting should be configured correctly.

oval:org.secpod.oval:def:19405
The 'Teredo Default Qualified' machine setting should be configured correctly.

oval:org.secpod.oval:def:8843
The "Turn off handwriting recognition error reporting" machine setting should be configured correctly.

oval:org.secpod.oval:def:19406
The 'Set PNRP cloud to resolve only' machine setting should be configured correctly for IPv6 Global.

oval:org.secpod.oval:def:19407
The 'Events.asp program' machine setting should be configured correctly.

oval:org.secpod.oval:def:19408
The 'Turn off Real-Time Monitoring' machine setting should be configured correctly.

oval:org.secpod.oval:def:8846
The "Turn off Program Inventory" machine setting should be configured correctly.

oval:org.secpod.oval:def:19401
The 'Limit the age of files in the BITS Peercache' machine setting should be configured correctly.

oval:org.secpod.oval:def:19402
The 'Turn Off user-installed desktop gadgets' machine setting should be configured correctly.

oval:org.secpod.oval:def:19403
The 'Turn on the Ability for Applications to Prevent Sleep Transitions (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19404
The 'Time (in seconds) to force reboot' machine setting should be configured correctly.

oval:org.secpod.oval:def:19400
The 'Turn off System Restore' machine setting should be configured correctly.

oval:org.secpod.oval:def:8847
The "Prevent Windows Media DRM Internet Access" machine setting should be configured correctly.

oval:org.secpod.oval:def:8849
The "Turn off Registration if URL connection is referring to Microsoft.com" machine setting should be configured correctly.

oval:org.secpod.oval:def:19416
The 'Turn off tracking of last play time of games in the Games folder' machine setting should be configured correctly.

oval:org.secpod.oval:def:8854
The "ISATAP State" machine setting should be configured correctly.

oval:org.secpod.oval:def:19417
The 'Prevent installation of devices that match any of these device IDs' machine setting should be configured correctly.

oval:org.secpod.oval:def:19418
The 'Prevent Video Smoothing' machine setting should be configured correctly.

oval:org.secpod.oval:def:8856
The "Prohibit Access of the Windows Connect Now wizards" machine setting should be configured correctly.

oval:org.secpod.oval:def:19419
The 'Windows Scaling Heuristics State' machine setting should be configured correctly.

oval:org.secpod.oval:def:8857
The "Troubleshooting: Allow users to access online troubleshooting content on Microsoft servers from the Troubleshooting Control Panel (via the Windows Online Troubleshooting Service - WOTS)" machine setting should be configured correctly.

oval:org.secpod.oval:def:19412
The 'Override print driver execution compatibility setting reported by print driver' machine setting should be configured correctly.

oval:org.secpod.oval:def:19413
The 'Teredo Refresh Rate' machine setting should be configured correctly.

oval:org.secpod.oval:def:19414
The 'Automatic Updates detection frequency' machine setting should be configured correctly.

oval:org.secpod.oval:def:8852
The "Do not allow supported Plug and Play device redirection" machine setting should be configured correctly.

oval:org.secpod.oval:def:19415
The 'All Removable Storage classes: Deny all access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19410
The 'Disallow Negotiate authentication' machine setting should be configured correctly for the WinRM client.

oval:org.secpod.oval:def:19411
The 'Turn off Program Compatibility Assistant' machine setting should be configured correctly.

oval:org.secpod.oval:def:8859
The "Configuration of wireless settings using Windows Connect Now" machine setting should be configured correctly.

oval:org.secpod.oval:def:19409
The 'Limit the maximum network bandwidth used for Peercaching' machine setting should be configured correctly.

oval:org.secpod.oval:def:8832
The "Redirect only the default client printer" machine setting should be configured correctly.

oval:org.secpod.oval:def:8834
The "Turn off heap termination on corruption" machine setting should be configured correctly.

oval:org.secpod.oval:def:19449
The 'Domain Controller Address Type Returned' machine setting should be configured correctly.

oval:org.secpod.oval:def:8800
The "Microsoft Support Diagnostic Tool: Turn on MSDT interactive communication with Support Provider" machine setting should be configured correctly.

oval:org.secpod.oval:def:19445
The 'Maximum wait time for Group Policy scripts' machine setting should be configured correctly.

oval:org.secpod.oval:def:19446
The 'Enable user to use media source while elevated' machine setting should be configured correctly.

oval:org.secpod.oval:def:19447
The 'CD and DVD: Deny read access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19448
The 'Hide entry points for Fast User Switching' machine setting should be configured correctly.

oval:org.secpod.oval:def:8807
The 'Devices: Allow undock without having to log on' setting should be configured correctly.

oval:org.secpod.oval:def:19442
The 'DNS Suffix Search List' machine setting should be configured correctly.

oval:org.secpod.oval:def:19443
The 'Allow Applications to Prevent Automatic Sleep (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19440
The 'Select the Sleep Button Action (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:8811
The 'System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies' setting should be configured correctly.

oval:org.secpod.oval:def:19457
The 'Do not allow the computer to act as a BITS Peercaching server' machine setting should be configured correctly.

oval:org.secpod.oval:def:19458
The 'Do not display Manage Your Server page at logon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19459
The 'Enable Windows NTP Server' machine setting should be configured correctly.

oval:org.secpod.oval:def:19453
The 'Configure Report Queue' machine setting should be configured correctly.

oval:org.secpod.oval:def:19454
The 'Package Point and print - Approved servers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19455
The 'Limit reservable bandwidth' machine setting should be configured correctly.

oval:org.secpod.oval:def:19450
The 'Do not allow manual configuration of iSNS servers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19451
The 'Non-conforming packets' machine setting should be configured correctly.

oval:org.secpod.oval:def:19427
The 'Turn off access to the performance center core section' machine setting should be configured correctly.

oval:org.secpod.oval:def:19428
The 'Disallow optical media as backup target' machine setting should be configured correctly.

oval:org.secpod.oval:def:19429
The 'Specify the System Hibernate Timeout (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19423
The 'Hide previous versions list for local files' machine setting should be configured correctly.

oval:org.secpod.oval:def:19424
The 'Allow restore of system to default state' machine setting should be configured correctly.

oval:org.secpod.oval:def:19425
The 'Do not allow adding new targets via manual configuration' machine setting should be configured correctly.

oval:org.secpod.oval:def:19426
The 'Do not automatically encrypt files moved to encrypted folders' machine setting should be configured correctly.

oval:org.secpod.oval:def:19420
The 'Limit maximum display resolution' machine setting should be configured correctly.

oval:org.secpod.oval:def:19421
The 'Teredo Server Name' machine setting should be configured correctly.

oval:org.secpod.oval:def:19422
The 'Removable Disks: Deny execute access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19438
The 'Disable delete notifications on all volumes' machine setting should be configured correctly.

oval:org.secpod.oval:def:19439
The 'Choose drive encryption method and cipher strength' machine setting should be configured correctly.

oval:org.secpod.oval:def:19434
The 'Turn off Help and Support Center 'Did you know?' content' machine setting should be configured correctly.

oval:org.secpod.oval:def:19435
The 'Force Rediscovery Interval' machine setting should be configured correctly.

oval:org.secpod.oval:def:19436
The 'Allow installation of devices using drivers that match these device setup classes' machine setting should be configured correctly.

oval:org.secpod.oval:def:19437
The 'Turn Off Non Volatile Cache Feature' machine setting should be configured correctly.

oval:org.secpod.oval:def:19430
The 'Positive Periodic DC Cache Refresh for Background Callers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19431
The 'Minimum Idle Connection Timeout for RPC/HTTP connections' machine setting should be configured correctly.

oval:org.secpod.oval:def:19432
The 'Use mandatory profiles on the RD Session Host server' machine setting should be configured correctly.

oval:org.secpod.oval:def:19433
The 'Configure TPM platform validation profile' machine setting should be configured correctly.

oval:org.secpod.oval:def:18952
The 'Disallow changing of geographic location' machine setting should be configured correctly.

oval:org.secpod.oval:def:18951
Rights to activate or launch DCOM applications should be assigned as appropriate.

oval:org.secpod.oval:def:18950
The 'Turn off creation of System Restore Checkpoints' machine setting should be configured correctly.

oval:org.secpod.oval:def:18957
The 'Devices: Restrict floppy access to locally logged-on user only' setting should be configured correctly.

oval:org.secpod.oval:def:18956
The 'Only use Package Point and print' machine setting should be configured correctly.

oval:org.secpod.oval:def:18955
The 'Prevent restoring remote previous versions' machine setting should be configured correctly.

oval:org.secpod.oval:def:18954
The 'Sets how often a DFS Client discovers DC's' machine setting should be configured correctly.

oval:org.secpod.oval:def:18949
The 'Encrypt the Offline Files cache' machine setting should be configured correctly.

oval:org.secpod.oval:def:18948
The 'Set the Remote Desktop licensing mode' machine setting should be configured correctly.

oval:org.secpod.oval:def:18947
Auditing of 'System: Security State Change' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18964
The 'Timeout for fast user switching events' machine setting should be configured correctly.

oval:org.secpod.oval:def:18963
Auditing of 'Audit system events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18961
The 'Sites Covered by the Application Directory Partition Locator DNS SRV Records' machine setting should be configured correctly.

oval:org.secpod.oval:def:18968
The 'Wait for remote user profile' machine setting should be configured correctly.

oval:org.secpod.oval:def:18966
The 'Primary DNS Suffix Devolution' machine setting should be configured correctly.

oval:org.secpod.oval:def:18965
The 'Turn off Tablet PC touch input' machine setting should be configured correctly.

oval:org.secpod.oval:def:18959
Auditing of 'Account Management: Security Group Management' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18958
The 'Sysvol share compatibility' machine setting should be configured correctly.

oval:org.secpod.oval:def:18931
The 'Guaranteed service type' Layer-3 Differentiated Services Code Point (DSCP) value should be configured correctly for packets that conform to the flow specification.

oval:org.secpod.oval:def:18930
The 'Do not allow window animations' machine setting should be configured correctly.

oval:org.secpod.oval:def:18934
The 'Define interoperable Kerberos V5 realm settings' machine setting should be configured correctly.

oval:org.secpod.oval:def:18933
The 'Enable user to browse for source while elevated' machine setting should be configured correctly.

oval:org.secpod.oval:def:18932
The 'Execute print drivers in isolated processes' machine setting should be configured correctly.

oval:org.secpod.oval:def:18926
The 'Allow the Network Access Protection client to support the 802.1x Enforcement Client component' machine setting should be configured correctly.

oval:org.secpod.oval:def:18925
Auditing of 'Object Access: Kernel Object' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18941
The 'Set the Time interval in minutes for logging accounting data' machine setting should be configured correctly.

oval:org.secpod.oval:def:18946
The 'Corporate DNS Probe Host Name' machine setting should be configured correctly.

oval:org.secpod.oval:def:18945
The 'Turn On Desktop Background Slideshow (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:18944
Auditing of 'System: System Integrity' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18939
Auditing of 'Policy Change: Authentication Policy Change' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18938
Unicast response to multicast or broadcast requests should be enabled or disabled as appropriate for the Public Profile.

oval:org.secpod.oval:def:18937
The 'Do not allow Windows Messenger to be run' machine setting should be configured correctly.

oval:org.secpod.oval:def:18936
The 'Configure the list of blocked TPM commands' machine setting should be configured correctly.

oval:org.secpod.oval:def:8887
Do Not Show First Use Dialog Boxes This policy prevents the Privacy Options and Installation Options dialog boxes from being displayed the first time a user starts Windows Media Player. This policy prevents the dialog boxes which allow users to select privacy, file types, and other desktop options f ...

oval:org.secpod.oval:def:18996
The 'Do not allow additional session logins' machine setting should be configured correctly.

oval:org.secpod.oval:def:8888
Turn Off Microsoft Peer-to-Peer Networking Services

oval:org.secpod.oval:def:18995
Auditing of 'Logon-Logoff: IPsec Main Mode' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8889
Require domain users to elevate when setting a network's location

oval:org.secpod.oval:def:18994
The 'Configure the refresh interval for Server Manager' machine setting should be configured correctly.

oval:org.secpod.oval:def:8884
If this setting is enabled any additional data requests from Microsoft in response to a Windows Error Reporting event will be automatically declined without notice to the user.

oval:org.secpod.oval:def:18999
Auditing of 'Logon-Logoff: IPsec Quick Mode' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18998
The 'Turn on certificate propagation from smart card' machine setting should be configured correctly.

oval:org.secpod.oval:def:8886
Prevent device metadata retrieval from internet

oval:org.secpod.oval:def:18993
The 'Turn on Software Notifications' machine setting should be configured correctly.

oval:org.secpod.oval:def:18992
Auditing of 'Object Access: Registry' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18991
The 'Select the network adapter to be used for Remote Desktop IP Virtualization' machine setting should be configured correctly.

oval:org.secpod.oval:def:18990
The 'Allow .rdp files from unknown publishers' machine setting should be configured correctly.

oval:org.secpod.oval:def:8881
Terminal Services Smart Card Device Redirection

oval:org.secpod.oval:def:8882
Turn off shell protocol protected mode

oval:org.secpod.oval:def:8896
If this setting is enabled, Windows Error Reporting will not send any problem information to Microsoft. Additionally, solution information will not be available in the Problem Reports and Solutions control panel.

oval:org.secpod.oval:def:8890
If this setting is enabled Windows Error Reporting events will not be logged to the system event log.

oval:org.secpod.oval:def:8891
Terminal Services LPT Port Redirection

oval:org.secpod.oval:def:8893
When Windows Defender detects software or changes by software not yet classified for risks, you see how other members responded to the alert. In turn, the action you apply help other members choose how to respond. Your actions also help Microsoft choose which software to investigate for potential th ...

oval:org.secpod.oval:def:18975
The 'Prioritize all digitally signed drivers equally during the driver ranking and selection process' machine setting should be configured correctly.

oval:org.secpod.oval:def:8865
Prevents users from being prompted to update Windows Media Player. This policy prevents the Player from being updated and prevents users with administrator rights from being prompted to update the Player if an updated version is available. The Check for Player Updates command on the Help menu in the ...

oval:org.secpod.oval:def:18974
Auditing of 'Object Access: Certification Services' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8867
Route all traffic through the internal network

oval:org.secpod.oval:def:18972
The 'Allow or Disallow use of the Offline Files feature' machine setting should be configured correctly.

oval:org.secpod.oval:def:8868
Terminal Services Clipboard Redirection

oval:org.secpod.oval:def:18979
The 'Turn off Multicast Bootstrap' machine setting should be configured correctly for IPv6 Link Local.

oval:org.secpod.oval:def:8862
Always Use Classic Logon

oval:org.secpod.oval:def:18977
Auditing of 'Object Access: Handle Manipulation' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8863
Turn on session logging

oval:org.secpod.oval:def:18976
The 'Turn on logging' machine setting should be configured correctly.

oval:org.secpod.oval:def:8864
V0015671 Root Certificates Update

oval:org.secpod.oval:def:18971
The 'Allow only system backup' machine setting should be configured correctly.

oval:org.secpod.oval:def:8869
Turn on Responder (RSPNDR) driver

oval:org.secpod.oval:def:18970
The 'Permitted Managers' machine setting should be configured correctly.

oval:org.secpod.oval:def:18969
The 'Tape Drives: Deny read access' machine setting should be configured correctly.

oval:org.secpod.oval:def:8860
The "Turn off the "Order Prints" picture task" machine setting should be configured correctly.

oval:org.secpod.oval:def:18986
The 'Disable Windows Installer' machine setting should be configured correctly.

oval:org.secpod.oval:def:18985
Auditing of 'Audit privilege use' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18984
The 'Allow Delegating Fresh Credentials with NTLM-only Server Authentication' machine setting should be configured correctly.

oval:org.secpod.oval:def:18983
Auditing of 'Object Access: File System' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8879
This setting controls the ability of non-administrators to install updates that have been digitally signed by the application vendor.

oval:org.secpod.oval:def:8872
Windows Customer Experience Improvement Program is disabled.

oval:org.secpod.oval:def:18989
Auditing of 'Object Access: Other Object Access Events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8873
6to4 State

oval:org.secpod.oval:def:18988
The 'Best effort service type' link layer (Layer-2) priority value should be configured correctly.

oval:org.secpod.oval:def:18987
The 'Final DC Discovery Retry Setting for Background Callers' machine setting should be configured correctly.

oval:org.secpod.oval:def:18982
The 'Enable user to patch elevated products' machine setting should be configured correctly.

oval:org.secpod.oval:def:18981
The 'Specify maximum number of remote shells per user' machine setting should be configured correctly.

oval:org.secpod.oval:def:18980
The 'Run logon scripts synchronously' machine setting should be configured correctly.

oval:org.secpod.oval:def:8870
Turn off Windows Update device driver search prompt

oval:org.secpod.oval:def:8871
Windows will be prevented from sending an error report when a device driver requests additional software during installation.

oval:org.secpod.oval:def:19086
The 'Configure RD Connection Broker server name' machine setting should be configured correctly.

oval:org.secpod.oval:def:19087
The 'Assign a default domain for logon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19088
The 'Exclude files from being cached' machine setting should be configured correctly.

oval:org.secpod.oval:def:19081
The 'Turn off Windows Mail application' machine setting should be configured correctly.

oval:org.secpod.oval:def:19082
The 'Display a custom message title when device installation is prevented by a policy setting' machine setting should be configured correctly.

oval:org.secpod.oval:def:19083
The 'Do not allow changes to initiator CHAP secret' machine setting should be configured correctly.

oval:org.secpod.oval:def:19084
The 'Directory pruning priority' machine setting should be configured correctly.

oval:org.secpod.oval:def:19080
The 'Prompt user when a slow network connection is detected' machine setting should be configured correctly.

oval:org.secpod.oval:def:19096
The 'Events.asp program command line parameters' machine setting should be configured correctly.

oval:org.secpod.oval:def:19097
Auditing of 'Global Object Access Auditing: File System' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19098
The 'Turn off Touch Panning' machine setting should be configured correctly.

oval:org.secpod.oval:def:19099
The 'Primary DNS Suffix Devolution Level' machine setting should be configured correctly.

oval:org.secpod.oval:def:19092
The 'Turn Off Adaptive Display Timeout (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19093
The 'Limit maximum number of monitors' machine setting should be configured correctly.

oval:org.secpod.oval:def:19095
The 'Disallow Kerberos authentication' machine setting should be configured correctly for the WinRM service.

oval:org.secpod.oval:def:19091
The 'Configure Network Options preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19068
The 'Allow printers to be published' machine setting should be configured correctly.

oval:org.secpod.oval:def:19069
The 'Maximum DC Discovery Retry Interval Setting for Background Callers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19063
The 'Do not allow Digital Locker to run' machine setting should be configured correctly.

oval:org.secpod.oval:def:19064
The 'Use IP Address Redirection' machine setting should be configured correctly.

oval:org.secpod.oval:def:19060
The 'Prevent Media Sharing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19061
The 'Cache transforms in secure location on workstation' machine setting should be configured correctly.

oval:org.secpod.oval:def:19062
The 'Disable logging via package settings' machine setting should be configured correctly.

oval:org.secpod.oval:def:19078
The 'Prohibit patching' machine setting should be configured correctly.

oval:org.secpod.oval:def:19074
Auditing of 'Logon-Logoff: Logoff' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19075
The 'Run these programs at user logon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19076
The 'Maximum Log File Size' machine setting should be configured correctly.

oval:org.secpod.oval:def:19077
Auditing of 'System: Other System Events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19070
The 'Configure Security Policy for Scripted Diagnostics' machine setting should be configured correctly.

oval:org.secpod.oval:def:19072
The 'IP Security policy processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19009
The 'Set timer resolution' machine setting should be configured correctly.

oval:org.secpod.oval:def:19005
Auditing of 'Policy Change: Filtering Platform Policy Change' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19489
The 'Specify idle Timeout' machine setting should be configured correctly.

oval:org.secpod.oval:def:19007
The 'Include rarely used Chinese, Kanji, or Hanja characters' machine setting should be configured correctly.

oval:org.secpod.oval:def:19008
The 'MaxConcurrentUsers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19485
The 'Turn Off Solid State Mode' machine setting should be configured correctly.

oval:org.secpod.oval:def:19002
The 'Turn off Application Telemetry' machine setting should be configured correctly.

oval:org.secpod.oval:def:19486
The 'Prevent display of the user interface for critical errors' machine setting should be configured correctly.

oval:org.secpod.oval:def:19487
The 'Slow network connection timeout for user profiles' machine setting should be configured correctly.

oval:org.secpod.oval:def:19004
The 'Positive Periodic DC Cache Refresh for Non-Background Callers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19488
The 'Select the Lid Switch Action (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19481
The 'Low Battery Notification Level' machine setting should be configured correctly.

oval:org.secpod.oval:def:19482
The 'Specify the System Hibernate Timeout (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19000
The 'Network Projector Port Setting' machine setting should be configured correctly.

oval:org.secpod.oval:def:19484
The 'Configure Folders preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19017
The 'Prevent restoring local previous versions' machine setting should be configured correctly.

oval:org.secpod.oval:def:19019
Auditing of 'Policy Change: Other Policy Change Events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19012
The 'Disable remote Desktop Sharing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19496
The Diagnostic Policy Service (DPS) 'Configure Scenario Execution Level' machine setting should be configured correctly for Windows System Responsiveness Diagnostics.

oval:org.secpod.oval:def:19013
Auditing of 'Account Management: Other Account Management Events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19497
The 'Configure Reliability WMI Providers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19498
The 'Allow cryptography algorithms compatible with Windows NT 4.0' machine setting should be configured correctly.

oval:org.secpod.oval:def:19493
The 'Delete cached copies of roaming profiles' machine setting should be configured correctly.

oval:org.secpod.oval:def:19010
The 'Trusted Hosts' machine setting should be configured correctly.

oval:org.secpod.oval:def:19494
The 'Configure Report Archive' machine setting should be configured correctly.

oval:org.secpod.oval:def:19011
The 'Always show desktop on connection' machine setting should be configured correctly.

oval:org.secpod.oval:def:19495
The 'Events.asp URL' machine setting should be configured correctly.

oval:org.secpod.oval:def:19490
The 'Network control service type' link layer (Layer-2) priority value should be configured correctly.

oval:org.secpod.oval:def:19491
The 'Turn off PNRP cloud creation' machine setting should be configured correctly for IPv6 Global.

oval:org.secpod.oval:def:19467
The 'List of applications to be excluded' machine setting should be configured correctly.

oval:org.secpod.oval:def:19468
The 'Allow certificates with no extended key usage certificate attribute' machine setting should be configured correctly.

oval:org.secpod.oval:def:19469
The 'Turn on root certificate propagation from smart card' machine setting should be configured correctly.

oval:org.secpod.oval:def:19463
The 'Log File Path' machine setting should be configured correctly for the application log.

oval:org.secpod.oval:def:19464
The 'Detect applications unable to launch installers under UAC' machine setting should be configured correctly.

oval:org.secpod.oval:def:19466
The 'Do not detect slow network connections' machine setting should be configured correctly.

oval:org.secpod.oval:def:19460
The 'Specify channel binding token hardening level' machine setting should be configured correctly.

oval:org.secpod.oval:def:19461
The 'Turn on definition updates through both WSUS and Windows Update' machine setting should be configured correctly.

oval:org.secpod.oval:def:19462
The 'Configure Power Options preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19479
The 'Point and Print Restrictions' machine setting should be configured correctly.

oval:org.secpod.oval:def:19474
The 'Enable client-side targeting' machine setting should be configured correctly.

oval:org.secpod.oval:def:19475
The 'Require strict KDC validation' machine setting should be configured correctly.

oval:org.secpod.oval:def:19476
The 'Turn Off the Hard Disk (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19477
The 'Disk Diagnostic: Configure execution level' machine setting should be configured correctly.

oval:org.secpod.oval:def:19470
The 'Disallow network as backup target' machine setting should be configured correctly.

oval:org.secpod.oval:def:19471
The 'Remove browse dialog box for new source' machine setting should be configured correctly.

oval:org.secpod.oval:def:19472
The 'Allow Print Spooler to accept client connections' machine setting should be configured correctly.

oval:org.secpod.oval:def:19473
The 'Don't set the always do this checkbox' machine setting should be configured correctly.

oval:org.secpod.oval:def:19049
The 'SSL Cipher Suite Order' machine setting should be configured correctly.

oval:org.secpod.oval:def:19045
The 'WPD Devices: Deny write access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19046
The 'Priority Set in the DC Locator DNS SRV Records' machine setting should be configured correctly.

oval:org.secpod.oval:def:19047
Auditing of 'DS Access: Detailed Directory Service Replication' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19048
The 'Filter duplicate logon certificates' machine setting should be configured correctly.

oval:org.secpod.oval:def:19041
Auditing of 'Logon-Logoff: Network Policy Server' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19042
Auditing of 'DS Access: Directory Service Changes' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19043
Auditing of 'Audit object access' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19044
Auditing of 'Detailed Tracking: Process Creation' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19040
The 'Register PTR Records' machine setting should be configured correctly.

oval:org.secpod.oval:def:19056
The 'DC Locator DNS records not registered by the DCs' machine setting should be configured correctly.

oval:org.secpod.oval:def:19057
The 'Registration Refresh Interval' machine setting should be configured correctly.

oval:org.secpod.oval:def:19058
Auditing of 'DS Access: Directory Service Replication' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19059
The 'Enabling Windows Update Power Management to automatically wake up the system to install scheduled updates' machine setting should be configured correctly.

oval:org.secpod.oval:def:19053
The 'Prevent Input Panel tab from appearing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19054
The 'Allow only USB root hub connected Enhanced Storage devices' machine setting should be configured correctly.

oval:org.secpod.oval:def:19055
The 'Turn off Windows Startup Sound' machine setting should be configured correctly.

oval:org.secpod.oval:def:19050
The 'Prohibit Use of Restart Manager' machine setting should be configured correctly.

oval:org.secpod.oval:def:19051
Auditing of 'Logon-Logoff: Special Logon' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19027
Auditing of 'Global Object Access Auditing: Registry' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19028
The 'Limit number of connections' machine setting should be configured correctly.

oval:org.secpod.oval:def:19024
The 'Automatic reconnection' machine setting should be configured correctly.

oval:org.secpod.oval:def:19025
The 'Turn off location scripting' machine setting should be configured correctly.

oval:org.secpod.oval:def:19026
Unicast response to multicast or broadcast requests should be enabled or disabled as appropriate for the Domain Profile.

oval:org.secpod.oval:def:19022
The 'Update Security Level' machine setting should be configured correctly.

oval:org.secpod.oval:def:19038
Auditing of 'Logon-Logoff: Logon' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19039
Auditing of 'Detailed Tracking: RPC Events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19036
The 'Enable Windows NTP Client' machine setting should be configured correctly.

oval:org.secpod.oval:def:19037
The 'EFS recovery policy processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19031
Auditing of 'Audit account management' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19032
The 'Refresh Interval of the DC Locator DNS Records' machine setting should be configured correctly.

oval:org.secpod.oval:def:19033
The Diagnostic Policy Service (DPS) 'Configure Scenario Execution Level' machine setting should be configured correctly for Windows Standby/Resume Performance Diagnostics.

oval:org.secpod.oval:def:19526
The 'Do not allow password authentication of Enhanced Storage devices' machine setting should be configured correctly.

oval:org.secpod.oval:def:19527
The 'Allow desktop composition for remote desktop sessions' machine setting should be configured correctly.

oval:org.secpod.oval:def:19528
The 'Limit outstanding packets' machine setting should be configured correctly.

oval:org.secpod.oval:def:19529
The 'Specify the Display Dim Brightness (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19522
The 'Removable Disks: Deny read access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19523
The 'Allow CredSSP authentication' machine setting should be configured correctly for the WinRM client.

oval:org.secpod.oval:def:19524
The 'Best effort service type' Layer-3 Differentiated Services Code Point (DSCP) value should be configured correctly for packets that conform to the flow specification.

oval:org.secpod.oval:def:19525
The Diagnostic Policy Service (DPS) 'Configure Scenario Execution Level' machine setting should be configured correctly for Fault Tolerant Heap.

oval:org.secpod.oval:def:19520
The 'Logging' machine setting should be configured correctly.

oval:org.secpod.oval:def:19521
The 'Display a custom message when installation is prevented by a policy setting' machine setting should be configured correctly.

oval:org.secpod.oval:def:19519
The 'Prohibit installing or uninstalling color profiles' machine setting should be configured correctly.

oval:org.secpod.oval:def:19538
The 'Turn off hardware buttons' machine setting should be configured correctly.

oval:org.secpod.oval:def:19539
The 'Turn off PNRP cloud creation' machine setting should be configured correctly for IPv6 Site Local.

oval:org.secpod.oval:def:19533
The 'Configure Local Users and Groups preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19534
The 'Do not allow client printer redirection' machine setting should be configured correctly.

oval:org.secpod.oval:def:19535
The 'Configure device installation time-out' machine setting should be configured correctly.

oval:org.secpod.oval:def:19536
The 'Enforce Removal of Remote Desktop Wallpaper' machine setting should be configured correctly.

oval:org.secpod.oval:def:19530
The 'Do not allow manual configuration of target portals' machine setting should be configured correctly.

oval:org.secpod.oval:def:19531
The 'Directory pruning interval' machine setting should be configured correctly.

oval:org.secpod.oval:def:19532
The 'Turn off Windows Network Connectivity Status Indicator active tests' machine setting should be configured correctly.

oval:org.secpod.oval:def:19504
The 'Turn off Windows Installer RDS Compatibility' machine setting should be configured correctly.

oval:org.secpod.oval:def:19505
The 'Location of the DCs hosting a domain with single label DNS name' machine setting should be configured correctly.

oval:org.secpod.oval:def:19506
The 'Turn Off Cache Power Mode' machine setting should be configured correctly.

oval:org.secpod.oval:def:19507
The 'Do not allow the BITS client to use Windows Branch Cache' machine setting should be configured correctly.

oval:org.secpod.oval:def:19500
The 'WPD Devices: Deny read access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19501
The 'Set BranchCache Distributed Cache mode' machine setting should be configured correctly.

oval:org.secpod.oval:def:19502
The 'Prevent press and hold' machine setting should be configured correctly.

oval:org.secpod.oval:def:19503
The 'Reserve Battery Notification Level' machine setting should be configured correctly.

oval:org.secpod.oval:def:19515
The 'Corporate Website Probe URL' machine setting should be configured correctly.

oval:org.secpod.oval:def:19516
The '6to4 Relay Name' machine setting should be configured correctly.

oval:org.secpod.oval:def:19517
The '6to4 Relay Name Resolution Interval' machine setting should be configured correctly.

oval:org.secpod.oval:def:19518
The 'Floppy Drives: Deny execute access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19511
The 'Reverse the subject name stored in a certificate when displaying' machine setting should be configured correctly.

oval:org.secpod.oval:def:19512
The 'Configure slow-link mode' machine setting should be configured correctly.

oval:org.secpod.oval:def:19513
The 'Set time limit for logoff of RemoteApp sessions' machine setting should be configured correctly.

oval:org.secpod.oval:def:19514
The 'Allow non-administrators to install drivers for these device setup classes' machine setting should be configured correctly.

oval:org.secpod.oval:def:19510
The 'Ignore the default list of blocked TPM commands' machine setting should be configured correctly.

oval:org.secpod.oval:def:19509
The 'Group Policy refresh interval for computers' machine setting should be configured correctly.

oval:org.secpod.oval:def:8920
The "Turn off background refresh of Group Policy" machine setting should be configured correctly.

oval:org.secpod.oval:def:19566
The 'Configure Regional Options preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19567
The 'Prune printers that are not automatically republished' machine setting should be configured correctly.

oval:org.secpod.oval:def:19568
The 'Turn On Compatibility HTTPS Listener' machine setting should be configured correctly.

oval:org.secpod.oval:def:19562
The 'Require strict target SPN match on remote procedure calls' machine setting should be configured correctly.

oval:org.secpod.oval:def:19563
The 'Define host name-to-Kerberos realm mappings' machine setting should be configured correctly.

oval:org.secpod.oval:def:19564
The 'Turn Off the Hard Disk (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19565
The 'Floppy Drives: Deny write access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19560
The 'Turn off automatic learning' machine setting should be configured correctly.

oval:org.secpod.oval:def:19561
The 'Microsoft Support Diagnostic Tool: Configure execution level' machine setting should be configured correctly.

oval:org.secpod.oval:def:19578
The 'Join RD Connection Broker' machine setting should be configured correctly.

oval:org.secpod.oval:def:19579
The 'Configure Start Menu preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19573
The 'Do not allow manual configuration of discovered targets' machine setting should be configured correctly.

oval:org.secpod.oval:def:19574
The 'Log File Path' machine setting should be configured correctly for the setup log.

oval:org.secpod.oval:def:19575
The 'Do not allow Windows Media Center to run' machine setting should be configured correctly.

oval:org.secpod.oval:def:19576
The 'Remove 'Make Available Offline'' machine setting should be configured correctly.

oval:org.secpod.oval:def:19570
The 'Always wait for the network at computer startup and logon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19571
The 'Disk Diagnostic: Configure custom alert text' machine setting should be configured correctly.

oval:org.secpod.oval:def:19572
The 'Disallow Interactive Users from generating Resultant Set of Policy data' machine setting should be configured correctly.

oval:org.secpod.oval:def:19548
The 'Restrict these programs from being launched from Help' machine setting should be configured correctly.

oval:org.secpod.oval:def:19549
The 'CD and DVD: Deny execute access' machine setting should be configured correctly.

oval:org.secpod.oval:def:8900
Turn Off Downloading of Game Information

oval:org.secpod.oval:def:8901
The system is configured to automatically forward error information.

oval:org.secpod.oval:def:19544
The 'Turn off access to the solutions to performance problems section' machine setting should be configured correctly.

oval:org.secpod.oval:def:19545
The 'Reduce Display Brightness (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19546
The 'Internet Explorer Maintenance policy processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19547
The 'Sites Covered by the DC Locator DNS SRV Records' machine setting should be configured correctly.

oval:org.secpod.oval:def:19540
The 'Allow remote start of unlisted programs' machine setting should be configured correctly.

oval:org.secpod.oval:def:8906
Enable/Disable PerfTrack

oval:org.secpod.oval:def:19541
The 'Hide previous versions of files on backup location' machine setting should be configured correctly.

oval:org.secpod.oval:def:19542
The 'Require trusted path for credential entry.' machine setting should be configured correctly.

oval:org.secpod.oval:def:19543
The 'Disk Quota policy processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:8909
Extend Point and Print connection to search Windows Update and use alternate cooection if needed

oval:org.secpod.oval:def:8902
Specify Search Order for device driver source locations

oval:org.secpod.oval:def:8903
Turn off game updates

oval:org.secpod.oval:def:8905
Teredo State

oval:org.secpod.oval:def:19559
The 'Group Policy slow link detection' machine setting should be configured correctly.

oval:org.secpod.oval:def:8910
Verifies Remove Disconnect option from the Shut Down dialog is set to Enabled

oval:org.secpod.oval:def:8911
Terminal Services is not configured to limit users to one remote session

oval:org.secpod.oval:def:8912
Do not delete temp folder upon exit

oval:org.secpod.oval:def:19555
The 'Prevent Quick Launch Toolbar Shortcut Creation' machine setting should be configured correctly.

oval:org.secpod.oval:def:19556
The 'Folder Redirection policy processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19557
The 'Configure Services preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19558
The 'Ignore custom consent settings' machine setting should be configured correctly.

oval:org.secpod.oval:def:19551
The 'Teredo Client Port' machine setting should be configured correctly.

oval:org.secpod.oval:def:8917
This setting controls the ability of non-administrators to install updates that have been digitally signed by the application vendor.

oval:org.secpod.oval:def:19552
The 'Turn off the ability to create a system image' machine setting should be configured correctly.

oval:org.secpod.oval:def:8918
The "Do not send a Windows error report when a generic driver is installed on a device" machine setting should be configured correctly.

oval:org.secpod.oval:def:19553
The 'Limit the maximum BITS job download time' machine setting should be configured correctly.

oval:org.secpod.oval:def:8919
The "Registry policy processing" machine setting should be configured correctly.

oval:org.secpod.oval:def:19554
The 'TTL Set in the DC Locator DNS Records' machine setting should be configured correctly.

oval:org.secpod.oval:def:8913
The "Prohibit installation and configuration of Network Bridge on your DNS domain network" machine setting should be configured correctly.

oval:org.secpod.oval:def:8914
The "Turn off Internet Connection Wizard if URL connection is referring to Microsoft.com" machine setting should be configured correctly.

oval:org.secpod.oval:def:19550
The 'Allow Delegating Saved Credentials with NTLM-only Server Authentication' machine setting should be configured correctly.

oval:org.secpod.oval:def:8916
The "Turn off Data Execution Prevention for Explorer" machine setting should be configured correctly.

oval:org.secpod.oval:def:19188
The 'Force the reading of all certificates from the smart card' machine setting should be configured correctly.

oval:org.secpod.oval:def:19189
The 'Run shutdown scripts visible' machine setting should be configured correctly.

oval:org.secpod.oval:def:19184
The 'Turn off Federation Service' machine setting should be configured correctly.

oval:org.secpod.oval:def:19185
The 'Turn on economical application of administratively assigned Offline Files' machine setting should be configured correctly.

oval:org.secpod.oval:def:19187
The 'Set path for Remote Desktop Services Roaming User Profile' machine setting should be configured correctly.

oval:org.secpod.oval:def:19180
The 'Do not allow changes to initiator iqn name' machine setting should be configured correctly.

oval:org.secpod.oval:def:19181
The 'Prevent launch an application' machine setting should be configured correctly.

oval:org.secpod.oval:def:19182
The 'Configure Applications preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19199
The 'Dynamic Registration of the DC Locator DNS Records' machine setting should be configured correctly.

oval:org.secpod.oval:def:19195
The 'Optimize visual experience for Remote Desktop Services sessions' machine setting should be configured correctly.

oval:org.secpod.oval:def:19196
The 'Lock Enhanced Storage when the computer is locked' machine setting should be configured correctly.

oval:org.secpod.oval:def:19197
The 'Do not allow non-Enhanced Storage removable devices' machine setting should be configured correctly.

oval:org.secpod.oval:def:19191
The 'Allow CredSSP authentication' machine setting should be configured correctly for the WinRM service.

oval:org.secpod.oval:def:19192
The 'Restrict potentially unsafe HTML Help functions to specified folders' machine setting should be configured correctly.

oval:org.secpod.oval:def:19193
The 'Re-prompt for restart with scheduled installations' machine setting should be configured correctly.

oval:org.secpod.oval:def:19194
The 'Turn off access to all Windows Update features' machine setting should be configured correctly.

oval:org.secpod.oval:def:19190
The 'Configure MSI Corrupted File Recovery Behavior' machine setting should be configured correctly.

oval:org.secpod.oval:def:19126
The 'Use forest search order' machine setting should be configured correctly for Kerberos client searches.

oval:org.secpod.oval:def:19127
The 'Qualitative service type' Layer-3 Differentiated Services Code Point (DSCP) value should be configured correctly for packets that do not conform to the flow specification.

oval:org.secpod.oval:def:19128
Auditing of 'Detailed Tracking: DPAPI Activity' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19129
The 'Configure keep-alive connection interval' machine setting should be configured correctly.

oval:org.secpod.oval:def:19122
The 'Turn off Multicast Bootstrap' machine setting should be configured correctly for IPv6 Site Local.

oval:org.secpod.oval:def:19123
Auditing of 'Privilege Use: Non Sensitive Privilege Use' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19124
The 'Allow domain users to log on using biometrics' machine setting should be configured correctly.

oval:org.secpod.oval:def:19125
The 'Specify Windows installation file location' machine setting should be configured correctly.

oval:org.secpod.oval:def:19120
Auditing of 'Detailed Tracking: Process Termination' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19121
The 'Check published state' machine setting should be configured correctly.

oval:org.secpod.oval:def:19137
The 'Turn on Remote Desktop IP Virtualization' machine setting should be configured correctly.

oval:org.secpod.oval:def:19138
The 'Sites Covered by the GC Locator DNS SRV Records' machine setting should be configured correctly.

oval:org.secpod.oval:def:19139
The 'Dynamic Update' machine setting should be configured correctly.

oval:org.secpod.oval:def:19133
The 'Turn On Desktop Background Slideshow (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19134
The 'Allow local activation security check exemptions' machine setting should be configured correctly.

oval:org.secpod.oval:def:19135
The 'Turn off Fair Share CPU Scheduling' machine setting should be configured correctly.

oval:org.secpod.oval:def:19136
The 'Turn Off Hybrid Sleep (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19130
Auditing of 'Object Access: Application Generated' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19131
The 'Enable disk quotas' machine setting should be configured correctly.

oval:org.secpod.oval:def:19132
The 'Reduce Display Brightness (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19109
The 'Do not check for user ownership of Roaming Profile Folders' machine setting should be configured correctly.

oval:org.secpod.oval:def:19104
The 'Apply policy to removable media' machine setting should be configured correctly.

oval:org.secpod.oval:def:19588
The 'Set the map update interval for NIS subordinate servers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19105
The 'Microsoft Support Diagnostic Tool: Restrict tool download' machine setting should be configured correctly.

oval:org.secpod.oval:def:19106
The 'Turn off Configuration' machine setting should be configured correctly.

oval:org.secpod.oval:def:19107
Auditing of 'System: Security System Extension' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19100
The 'Turn Off Low Battery User Notification' machine setting should be configured correctly.

oval:org.secpod.oval:def:19584
The 'Turn on extensive logging for Active Directory Domain Services domain controllers that are running Server for NIS' machine setting should be configured correctly.

oval:org.secpod.oval:def:19101
The 'Terminate session when time limits are reached' machine setting should be configured correctly.

oval:org.secpod.oval:def:19585
The 'Turn off pen feedback' machine setting should be configured correctly.

oval:org.secpod.oval:def:19103
The 'Administratively assigned offline files' machine setting should be configured correctly.

oval:org.secpod.oval:def:19587
The 'Switch to the Simplified Chinese (PRC) gestures' machine setting should be configured correctly.

oval:org.secpod.oval:def:19580
The 'Select the Lid Switch Action (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19582
The 'Log directory pruning retry events' machine setting should be configured correctly.

oval:org.secpod.oval:def:19583
The 'Network control service type' Layer-3 Differentiated Services Code Point (DSCP) value should be configured correctly for packets that do not conform to the flow specification.

oval:org.secpod.oval:def:19119
The 'Turn on bandwidth optimization' machine setting should be configured correctly.

oval:org.secpod.oval:def:19115
Auditing of 'Logon-Logoff: Other Logon Logoff Events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19599
The 'Deny Delegating Default Credentials' machine setting should be configured correctly.

oval:org.secpod.oval:def:19116
The 'Force selected system UI language to overwrite the user UI language' machine setting should be configured correctly.

oval:org.secpod.oval:def:19117
The 'Set up a work schedule to limit the maximum network bandwidth used for BITS background transfers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19118
The 'Remove Program Compatibility Property Page' machine setting should be configured correctly.

oval:org.secpod.oval:def:19111
The 'Turn off Problem Steps Recorder' machine setting should be configured correctly.

oval:org.secpod.oval:def:19112
The 'Turn on Accounting for WSRM' machine setting should be configured correctly.

oval:org.secpod.oval:def:19596
The 'Tape Drives: Deny execute access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19113
The 'Computer location' machine setting should be configured correctly.

oval:org.secpod.oval:def:19597
The 'Turn off the ability to back up data files' machine setting should be configured correctly.

oval:org.secpod.oval:def:19114
The 'Do not use Remote Desktop Session Host server IP address when virtual IP address is not available' machine setting should be configured correctly.

oval:org.secpod.oval:def:19598
The 'Disable text prediction' machine setting should be configured correctly.

oval:org.secpod.oval:def:19591
The 'Disallow Negotiate authentication' machine setting should be configured correctly for the WinRM service.

oval:org.secpod.oval:def:19592
The 'Short name creation options' machine setting should be configured correctly.

oval:org.secpod.oval:def:19593
The 'Verify old and new Folder Redirection targets point to the same share before redirecting' machine setting should be configured correctly.

oval:org.secpod.oval:def:19594
The 'Disable or enable software Secure Attention Sequence' machine setting should be configured correctly.

oval:org.secpod.oval:def:19590
The 'ActiveX installation policy for sites in Trusted zones' machine setting should be configured correctly.

oval:org.secpod.oval:def:19166
The 'Enable Persistent Time Stamp' machine setting should be configured correctly.

oval:org.secpod.oval:def:19167
The 'Only allow local user profiles' machine setting should be configured correctly.

oval:org.secpod.oval:def:19168
The 'Limit disk space used by offline files' machine setting should be configured correctly.

oval:org.secpod.oval:def:19169
The 'Guaranteed service type' link layer (Layer-2) priority value should be configured correctly.

oval:org.secpod.oval:def:19162
The 'Troubleshooting: Allow users to access and run Troubleshooting Wizards' machine setting should be configured correctly.

oval:org.secpod.oval:def:19163
The 'Turn on the Windows to NIS password synchronization for users that have been migrated to Active Directory' machine setting should be configured correctly.

oval:org.secpod.oval:def:19165
The 'Set the SMTP Server used to send notifications' machine setting should be configured correctly.

oval:org.secpod.oval:def:19160
The 'Allow Integrated Unblock screen to be displayed at the time of logon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19161
The 'Select the Power Button Action (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19177
The 'Deny Delegating Fresh Credentials' machine setting should be configured correctly.

oval:org.secpod.oval:def:19178
The 'Do not display Server Manager automatically at logon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19179
The 'Do not allow encryption on all NTFS volumes' machine setting should be configured correctly.

oval:org.secpod.oval:def:19173
The 'Prevent access to 16-bit applications' machine setting should be configured correctly.

oval:org.secpod.oval:def:19174
The 'Configure BranchCache for network files' machine setting should be configured correctly.

oval:org.secpod.oval:def:19175
The 'Do not allow connections without IPSec' machine setting should be configured correctly.

oval:org.secpod.oval:def:19176
The 'Critical Battery Notification Action' machine setting should be configured correctly.

oval:org.secpod.oval:def:19170
The 'Turn off Multicast Bootstrap' machine setting should be configured correctly for IPv6 Global.

oval:org.secpod.oval:def:19171
The 'Specify the Display Dim Brightness (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19148
Auditing of 'Logon-Logoff: IPsec Extended Mode' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19149
The 'Allow audio recording redirection' machine setting should be configured correctly.

oval:org.secpod.oval:def:19144
The 'Download missing COM components' machine setting should be configured correctly.

oval:org.secpod.oval:def:19145
The 'Log Access' machine setting should be configured correctly for the application log.

oval:org.secpod.oval:def:19146
The 'Turn on BranchCache' machine setting should be configured correctly.

oval:org.secpod.oval:def:19147
The 'Allow Delegating Fresh Credentials' machine setting should be configured correctly.

oval:org.secpod.oval:def:19140
The Diagnostic Policy Service (DPS) 'Configure Scenario Execution Level' machine setting should be configured correctly for Windows Boot Performance Diagnostics.

oval:org.secpod.oval:def:19141
The 'Turn on Security Center (Domain PCs only)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19142
The 'Allow time invalid certificates' machine setting should be configured correctly.

oval:org.secpod.oval:def:19143
The 'Allow BITS Peercaching' machine setting should be configured correctly.

oval:org.secpod.oval:def:19159
The 'Allow only Vista or later connections' machine setting should be configured correctly.

oval:org.secpod.oval:def:19156
The 'Diagnostics: Configure scenario execution level' machine setting should be configured correctly.

oval:org.secpod.oval:def:19157
The 'Update Top Level Domain Zones' machine setting should be configured correctly.

oval:org.secpod.oval:def:19151
The 'Deny Delegating Saved Credentials' machine setting should be configured correctly.

oval:org.secpod.oval:def:19152
The 'Do not allow sessions without mutual CHAP' machine setting should be configured correctly.

oval:org.secpod.oval:def:19153
The 'Detect application failures caused by deprecated COM objects' machine setting should be configured correctly.

oval:org.secpod.oval:def:19154
The 'Background upload of a roaming user profile's registry file while user is logged on' machine setting should be configured correctly.

oval:org.secpod.oval:def:19150
The 'Use Remote Desktop Easy Print printer driver first' machine setting should be configured correctly.

oval:org.secpod.oval:def:18799
The 'Allow users to log on using biometrics' machine setting should be configured correctly.

oval:org.secpod.oval:def:18797
The 'Allow administrators to override Device Installation Restriction policies' machine setting should be configured correctly.

oval:org.secpod.oval:def:18791
The 'Specify intranet Microsoft update service location' machine setting should be configured correctly.

oval:org.secpod.oval:def:18790
Auditing of 'Privilege Use: Sensitive Privilege Use' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18795
The 'Turn on extensive logging for Password Synchronization' machine setting should be configured correctly.

oval:org.secpod.oval:def:18794
The 'Allow Delegating Saved Credentials' machine setting should be configured correctly.

oval:org.secpod.oval:def:18792
The 'Log File Path' machine setting should be configured correctly for the security log.

oval:org.secpod.oval:def:18777
The 'Turn on Smart Card Plug and Play service' machine setting should be configured correctly.

oval:org.secpod.oval:def:18776
The 'Turn off PNRP cloud creation' machine setting should be configured correctly for IPv6 Link Local.

oval:org.secpod.oval:def:18775
The 'Do not process incoming mailslot messages used for domain controller location based on NetBIOS domain names' machine setting should be configured correctly.

oval:org.secpod.oval:def:18774
The 'Controlled load service type' link layer (Layer-2) priority value should be configured correctly.

oval:org.secpod.oval:def:19621
The 'Wireless policy processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19622
The 'Configure Shortcuts preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:18779
The 'Do not allow Flip3D invocation' machine setting should be configured correctly.

oval:org.secpod.oval:def:19620
The 'Turn off Resultant Set of Policy logging' machine setting should be configured correctly.

oval:org.secpod.oval:def:18772
The 'Run Windows PowerShell scripts first at user logon, logoff' machine setting should be configured correctly.

oval:org.secpod.oval:def:19618
The 'Configure Devices preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19619
The 'Security policy processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:18786
Auditing of 'Policy Change: Audit Policy Change' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18785
The 'Prevent Roaming Profile changes from propagating to the server' machine setting should be configured correctly.

oval:org.secpod.oval:def:18789
The 'Allow Delegating Default Credentials' machine setting should be configured correctly.

oval:org.secpod.oval:def:18780
The 'Do not show the 'local access only' network icon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19631
Auditing of 'Audit privilege use' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18784
The 'Allow non-administrators to receive update notifications' machine setting should be configured correctly.

oval:org.secpod.oval:def:18783
The 'Specify maximum amount of memory in MB per Shell' machine setting should be configured correctly.

oval:org.secpod.oval:def:18782
The 'Turn off the communities features' machine setting should be configured correctly.

oval:org.secpod.oval:def:18781
The 'Time (in seconds) to force reboot when required for policy changes to take effect' machine setting should be configured correctly.

oval:org.secpod.oval:def:19207
The 'Contact PDC on logon failure' machine setting should be configured correctly.

oval:org.secpod.oval:def:19208
The 'Allow logon scripts when NetBIOS or WINS is disabled' machine setting should be configured correctly.

oval:org.secpod.oval:def:19209
The 'Use localized subfolder names when redirecting Start Menu and My Documents' machine setting should be configured correctly.

oval:org.secpod.oval:def:19203
The 'Specify a default color' machine setting should be configured correctly.

oval:org.secpod.oval:def:19204
The 'Add Printer wizard - Network scan page (Unmanaged network)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19206
The 'Disallow selection of Custom Locales' machine setting should be configured correctly.

oval:org.secpod.oval:def:19200
The 'Configure Data Sources preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19201
The 'For touch input, don't show the Input Panel icon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19202
The 'Prevent restoring previous versions from backups' machine setting should be configured correctly.

oval:org.secpod.oval:def:19218
The 'Baseline file cache maximum size' machine setting should be configured correctly.

oval:org.secpod.oval:def:19219
The 'Delete user profiles older than a specified number of days on system restart' machine setting should be configured correctly.

oval:org.secpod.oval:def:19215
The 'Do not allow Windows Journal to be run' machine setting should be configured correctly.

oval:org.secpod.oval:def:19216
The 'TTL Set in the A and PTR records' machine setting should be configured correctly.

oval:org.secpod.oval:def:19217
The 'Leave Windows Installer and Group Policy Software Installation Data' machine setting should be configured correctly.

oval:org.secpod.oval:def:19211
The 'Turn off Application Compatibility Engine' machine setting should be configured correctly.

oval:org.secpod.oval:def:19212
The 'Propagation of extended error information' machine setting should be configured correctly.

oval:org.secpod.oval:def:19213
The 'Specify Shell Timeout' machine setting should be configured correctly.

oval:org.secpod.oval:def:19603
The 'Configure Printers preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19604
The 'Configure Files preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:18753
Auditing of 'Privilege Use: Other Privilege Use Events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19605
The 'Allow asynchronous user Group Policy processing when logging on through Remote Desktop Services' machine setting should be configured correctly.

oval:org.secpod.oval:def:19606
The 'Configure Environment preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:18759
Auditing of 'System: IPsec Driver' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18758
Auditing of 'Audit logon events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19601
The 'Remove users ability to invoke machine policy refresh' machine setting should be configured correctly.

oval:org.secpod.oval:def:19602
The 'Scripts policy processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:18750
Auditing of 'Policy Change: MPSSVC Rule Level Policy Change' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18766
Auditing of 'Account Logon: Kerberos Service Ticket Operations' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19614
The 'Software Installation policy processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:18765
Auditing of 'Account Logon: Kerberos Authentication Service' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19615
The 'Configure Registry preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19616
The 'Allow Cross-Forest User Policy and Roaming User Profiles' machine setting should be configured correctly.

oval:org.secpod.oval:def:19617
The 'Configure Scheduled Tasks preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19610
The 'Configure Network Shares preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19611
The 'User Group Policy loopback processing mode' machine setting should be configured correctly.

oval:org.secpod.oval:def:18768
Auditing of 'Account Management: User Account Management' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19612
The 'Turn off Local Group Policy objects processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:18767
Auditing of 'Account Management: Distribution Group Management' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19613
The 'Wired policy processing' machine setting should be configured correctly.

oval:org.secpod.oval:def:18762
Auditing of 'Audit account management' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19607
The 'Configure Ini Files preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19608
The 'Configure Folder Options preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19609
The 'Startup policy processing wait time' machine setting should be configured correctly.

oval:org.secpod.oval:def:18737
The 'Network Security: Restrict NTLM: Audit NTLM authentication in this domain' setting should be configured correctly.

oval:org.secpod.oval:def:18736
The 'Network Security: Restrict NTLM: Audit Incoming NTLM Traffic' setting should be configured correctly.

oval:org.secpod.oval:def:18743
Unicast response to multicast or broadcast requests should be enabled or disabled as appropriate for the Private Profile.

oval:org.secpod.oval:def:18741
Auditing of 'Policy Change: Audit Policy Change' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18746
Rights to access DCOM applications should be assigned as appropriate.

oval:org.secpod.oval:def:18745
Auditing of 'Policy Change: Authorization Policy Change' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18738
Auditing of 'Audit process tracking' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:14845
Auditing of 'Audit account logon events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18803
The 'Directory pruning retry' machine setting should be configured correctly.

oval:org.secpod.oval:def:18802
The 'Negative DC Discovery Cache Setting' machine setting should be configured correctly.

oval:org.secpod.oval:def:18801
The 'Removable Disks: Deny write access' machine setting should be configured correctly.

oval:org.secpod.oval:def:18800
The 'Timeout for hung logon sessions during shutdown' machine setting should be configured correctly.

oval:org.secpod.oval:def:19247
The 'Turn Off Hybrid Sleep (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19248
The 'Allow signature keys valid for Logon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19249
The 'Corporate DNS Probe Host Address' machine setting should be configured correctly.

oval:org.secpod.oval:def:19243
The 'Do not allow Snipping Tool to run' machine setting should be configured correctly.

oval:org.secpod.oval:def:19244
The 'Prevent license upgrade' machine setting should be configured correctly.

oval:org.secpod.oval:def:19245
The 'Controlled load service type' Layer-3 Differentiated Services Code Point (DSCP) should be configured correctly for packets that do not conform to the flow specification.

oval:org.secpod.oval:def:19246
The 'Log event when quota warning level exceeded' machine setting should be configured correctly.

oval:org.secpod.oval:def:19240
The 'Verbose vs normal status messages' machine setting should be configured correctly.

oval:org.secpod.oval:def:19241
The 'Do not allow Sound Recorder to run' machine setting should be configured correctly.

oval:org.secpod.oval:def:19242
The 'Scavenge Interval' machine setting should be configured correctly.

oval:org.secpod.oval:def:19258
The 'Turn off sensors' machine setting should be configured correctly.

oval:org.secpod.oval:def:19259
The 'Display information about previous logons during user logon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19254
The 'Turn off Windows SideShow' machine setting should be configured correctly.

oval:org.secpod.oval:def:19256
The 'Limit the maximum number of BITS jobs for this computer' machine setting should be configured correctly.

oval:org.secpod.oval:def:19257
The 'Notify user of successful smart card driver installation' machine setting should be configured correctly.

oval:org.secpod.oval:def:19251
The 'Hide notifications about RD Licensing problems that affect the RD Session Host server' machine setting should be configured correctly.

oval:org.secpod.oval:def:19252
The 'ForwarderResourceUsage' machine setting should be configured correctly.

oval:org.secpod.oval:def:19253
The 'Use the specified Remote Desktop license servers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19229
The 'Enable Transparent Caching' machine setting should be configured correctly.

oval:org.secpod.oval:def:19225
The 'Display string when smart card is blocked' machine setting should be configured correctly.

oval:org.secpod.oval:def:19226
The 'Override the More Gadgets link' machine setting should be configured correctly.

oval:org.secpod.oval:def:19227
The 'Set Remote Desktop Services User Home Directory' machine setting should be configured correctly.

oval:org.secpod.oval:def:19221
The 'Do not allow desktop composition' machine setting should be configured correctly.

oval:org.secpod.oval:def:19222
The 'Do not allow the computer to act as a BITS Peercaching client' machine setting should be configured correctly.

oval:org.secpod.oval:def:19223
The 'Turn off Windows Mobility Center' machine setting should be configured correctly.

oval:org.secpod.oval:def:19224
The 'Allow audio and video playback redirection' machine setting should be configured correctly.

oval:org.secpod.oval:def:19220
The 'Allow .rdp files from valid publishers and user's default .rdp settings' machine setting should be configured correctly.

oval:org.secpod.oval:def:19236
The 'Restrict user locales' machine setting should be configured correctly.

oval:org.secpod.oval:def:19237
The 'Allow automatic configuration of listeners' machine setting should be configured correctly.

oval:org.secpod.oval:def:19238
The 'Printer browsing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19239
The 'Set the interval between synchronization retries for Password Synchronization' machine setting should be configured correctly.

oval:org.secpod.oval:def:19232
The 'Turn off Connect to a Network Projector' machine setting should be configured correctly.

oval:org.secpod.oval:def:19234
The 'Prevent plaintext PINs from being returned by Credential Manager' machine setting should be configured correctly.

oval:org.secpod.oval:def:19235
The 'Allow DNS Suffix Appending to Unqualified Multi-Label Name Queries' machine setting should be configured correctly.

oval:org.secpod.oval:def:19230
The 'Custom Classes: Deny read access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19231
The 'Site Name' machine setting should be configured correctly.

oval:org.secpod.oval:def:19287
The 'Turn Off Adaptive Display Timeout (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19289
The 'Allow ECC certificates to be used for logon and authentication' machine setting should be configured correctly.

oval:org.secpod.oval:def:19283
The 'Log File Path' machine setting should be configured correctly for the system log.

oval:org.secpod.oval:def:19284
The 'Display Shutdown Event Tracker' machine setting should be configured correctly.

oval:org.secpod.oval:def:19285
The 'Limit the size of the entire roaming user profile cache' machine setting should be configured correctly.

oval:org.secpod.oval:def:19286
The 'Do not allow color changes' machine setting should be configured correctly.

oval:org.secpod.oval:def:19280
The 'Critical Battery Notification Level' machine setting should be configured correctly.

oval:org.secpod.oval:def:19281
The 'Restrict Internet communication' machine setting should be configured correctly.

oval:org.secpod.oval:def:19282
The 'Hash Publication for BranchCache' machine setting should be configured correctly.

oval:org.secpod.oval:def:19298
The 'Specify SHA1 thumbprints of certificates representing trusted .rdp publishers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19299
The 'Turn off Multicast Name Resolution' machine setting should be configured correctly.

oval:org.secpod.oval:def:19294
The 'Limit maximum color depth' machine setting should be configured correctly.

oval:org.secpod.oval:def:19296
The 'Turn off Windows HotStart' machine setting should be configured correctly.

oval:org.secpod.oval:def:19297
The 'Low Battery Notification Action' machine setting should be configured correctly.

oval:org.secpod.oval:def:19290
The 'Add the Administrators security group to roaming user profiles' machine setting should be configured correctly.

oval:org.secpod.oval:def:19291
The 'Turn off legacy remote shutdown interface' machine setting should be configured correctly.

oval:org.secpod.oval:def:19292
The 'Exclude credential providers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19293
The 'Set PNRP cloud to resolve only' machine setting should be configured correctly for IPv6 Site Local.

oval:org.secpod.oval:def:19269
The 'Remove Windows Security item from Start menu' machine setting should be configured correctly.

oval:org.secpod.oval:def:19265
The 'Set percentage of disk space used for client computer cache' machine setting should be configured correctly.

oval:org.secpod.oval:def:19266
The 'Configure list of Enhanced Storage devices usable on your computer' machine setting should be configured correctly.

oval:org.secpod.oval:def:19267
The 'Turn off automatic wake' machine setting should be configured correctly.

oval:org.secpod.oval:def:19268
The 'Disallow user override of locale settings' machine setting should be configured correctly.

oval:org.secpod.oval:def:19261
The 'Prevent backing up to optical media (CD/DVD)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19262
The 'Netlogon share compatibility' machine setting should be configured correctly.

oval:org.secpod.oval:def:19263
The 'Specify Windows Service Pack installation file location' machine setting should be configured correctly.

oval:org.secpod.oval:def:19264
The 'Turn Off Boot and Resume Optimizations' machine setting should be configured correctly.

oval:org.secpod.oval:def:19260
The 'Floppy Drives: Deny read access' machine setting should be configured correctly.

oval:org.secpod.oval:def:19276
The 'Approved Installation Sites for ActiveX Controls' machine setting should be configured correctly.

oval:org.secpod.oval:def:19277
The 'Enforce upgrade component rules' machine setting should be configured correctly.

oval:org.secpod.oval:def:19278
The 'Set BranchCache Hosted Cache mode' machine setting should be configured correctly.

oval:org.secpod.oval:def:19279
The 'Run startup scripts asynchronously' machine setting should be configured correctly.

oval:org.secpod.oval:def:19272
The 'Do not allow compression on all NTFS volumes' machine setting should be configured correctly.

oval:org.secpod.oval:def:19273
The 'Allow time zone redirection' machine setting should be configured correctly.

oval:org.secpod.oval:def:19274
The 'Allow signed updates from an intranet Microsoft update service location' machine setting should be configured correctly.

oval:org.secpod.oval:def:19275
The 'Restrict system locales' machine setting should be configured correctly.

oval:org.secpod.oval:def:19270
The 'Choose default folder for recovery password' machine setting should be configured correctly.

oval:org.secpod.oval:def:19271
The 'Turn off SwitchBack Compatibility Engine' machine setting should be configured correctly.

oval:org.secpod.oval:def:8725
The "Disable IE security prompt for Windows Installer scripts" machine setting should be configured correctly.

oval:org.secpod.oval:def:8735
The "Turn on Mapper I/O (LLTDIO) driver" machine setting should be configured correctly.

oval:org.secpod.oval:def:8732
The "Domain Controller: LDAP server signing requirements" setting should be configured correctly.

oval:org.secpod.oval:def:18897
The 'Detect application install failures' machine setting should be configured correctly.

oval:org.secpod.oval:def:18896
The 'MSS: (NtfsDisable8dot3NameCreation) Enable the computer to stop generating 8.3 style filenames (recommended)' setting should be configured correctly.

oval:org.secpod.oval:def:18899
The 'Require a PIN to access data on devices running Microsoft firmware' machine setting should be configured correctly.

oval:org.secpod.oval:def:8709
The 'Interactive logon: Message title for users attempting to log on' setting should be configured correctly.

oval:org.secpod.oval:def:18894
The 'Prevent Back-ESC mapping' machine setting should be configured correctly.

oval:org.secpod.oval:def:18893
The 'Do not automatically start Windows Messenger initially' machine setting should be configured correctly.

oval:org.secpod.oval:def:18892
The 'Check for New Signatures Before Scheduled Scans' machine setting should be configured correctly.

oval:org.secpod.oval:def:18891
The 'Set a support web page link' machine setting should be configured correctly.

oval:org.secpod.oval:def:19328
The 'Global Configuration Settings' machine setting should be configured correctly.

oval:org.secpod.oval:def:19329
The 'Turn off Help and Support Center Microsoft Knowledge Base search' machine setting should be configured correctly.

oval:org.secpod.oval:def:19324
The 'Allow Automatic Updates immediate installation' machine setting should be configured correctly.

oval:org.secpod.oval:def:19325
The 'Allow Corporate redirection of Customer Experience Improvement uploads' machine setting should be configured correctly.

oval:org.secpod.oval:def:19326
The 'Restricts the UI language Windows uses for all logged users' machine setting should be configured correctly.

oval:org.secpod.oval:def:19327
The 'Try Next Closest Site' machine setting should be configured correctly.

oval:org.secpod.oval:def:19320
The 'Configure Drive Maps preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19321
The 'Select an Active Power Plan' machine setting should be configured correctly.

oval:org.secpod.oval:def:19322
The 'Do not allow printing to Journal Note Writer' machine setting should be configured correctly.

oval:org.secpod.oval:def:19323
The 'Delay Restart for scheduled installations' machine setting should be configured correctly.

oval:org.secpod.oval:def:19339
The 'Limit the maximum number of BITS jobs for each user' machine setting should be configured correctly.

oval:org.secpod.oval:def:19335
The 'Set the Seed Server' machine setting should be configured correctly for IPv6 Site Local.

oval:org.secpod.oval:def:19336
The 'Weight Set in the DC Locator DNS SRV Records' machine setting should be configured correctly.

oval:org.secpod.oval:def:19337
The 'Provide information about previous logons to client computers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19338
The 'Turn on TPM backup to Active Directory Domain Services' machine setting should be configured correctly.

oval:org.secpod.oval:def:19331
The 'Disable password strength validation for Peer Grouping' machine setting should be configured correctly.

oval:org.secpod.oval:def:19332
The 'Customize Warning Messages' machine setting should be configured correctly.

oval:org.secpod.oval:def:19333
The 'Set maximum wait time for the network if a user has a roaming user profile or remote home directory' machine setting should be configured correctly.

oval:org.secpod.oval:def:19334
The 'Use RD Connection Broker load balancing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19330
The 'Allow the use of biometrics' machine setting should be configured correctly.

oval:org.secpod.oval:def:19306
The 'Pre-populate printer search location text' machine setting should be configured correctly.

oval:org.secpod.oval:def:19307
The 'Prevent Flicks Learning Mode' machine setting should be configured correctly.

oval:org.secpod.oval:def:19308
The 'Ignore the local list of blocked TPM commands' machine setting should be configured correctly.

oval:org.secpod.oval:def:19309
The Remote Desktop Connection Client 'Configure server authentication for client' machine setting should be configured correctly.

oval:org.secpod.oval:def:19302
The 'Always render print jobs on the server' machine setting should be configured correctly.

oval:org.secpod.oval:def:19303
The 'Qualitative service type' link layer (Layer-2) priority value should be configured correctly.

oval:org.secpod.oval:def:19304
The Diagnostic Policy Service (DPS) 'Configure Scenario Execution Level' machine setting should be configured correctly for Windows Memory Leak Diagnosis.

oval:org.secpod.oval:def:19305
The 'Do not allow sessions without one way CHAP' machine setting should be configured correctly.

oval:org.secpod.oval:def:19300
The 'Limit audio playback quality' machine setting should be configured correctly.

oval:org.secpod.oval:def:19301
The 'Primary DNS Suffix' machine setting should be configured correctly.

oval:org.secpod.oval:def:19317
The 'Group Policy refresh interval for domain controllers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19318
The 'Configure Internet Settings preference logging and tracing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19319
The 'Set PNRP cloud to resolve only' machine setting should be configured correctly for IPv6 Link Local.

oval:org.secpod.oval:def:19313
The 'Set up a maintenance schedule to limit the maximum network bandwidth used for BITS background transfers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19314
The 'Automated Site Coverage by the DC Locator DNS SRV Records' machine setting should be configured correctly.

oval:org.secpod.oval:def:19315
The 'Allow Automatic Sleep with Open Network Files (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19316
The 'Notify blocked drivers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19310
The 'Disallow locally attached storage as backup target' machine setting should be configured correctly.

oval:org.secpod.oval:def:19311
The 'Prohibit removal of updates' machine setting should be configured correctly.

oval:org.secpod.oval:def:19312
The 'Always use custom logon background' machine setting should be configured correctly.

oval:org.secpod.oval:def:18832
The 'Set the Seed Server' machine setting should be configured correctly for IPv6 Link Local.

oval:org.secpod.oval:def:18831
The 'Allow Automatic Sleep with Open Network Files (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:18830
The 'Communities' machine setting should be configured correctly.

oval:org.secpod.oval:def:18834
Auditing of 'Object Access: File Share' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18833
The 'Turn on definition updates through both WSUS and the Microsoft Malware Protection Center' machine setting should be configured correctly.

oval:org.secpod.oval:def:18829
The 'Register DNS records with connection-specific DNS suffix' machine setting should be configured correctly.

oval:org.secpod.oval:def:18828
Auditing of 'Audit account logon events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18827
The 'Do not set default client printer to be default printer in a session' machine setting should be configured correctly.

oval:org.secpod.oval:def:18826
The 'Detect application installers that need to be run as administrator' machine setting should be configured correctly.

oval:org.secpod.oval:def:18843
The 'Expected dial-up delay on logon' machine setting should be configured correctly.

oval:org.secpod.oval:def:18842
The 'Turn On Compatibility HTTP Listener' machine setting should be configured correctly.

oval:org.secpod.oval:def:18841
The Diagnostic Policy Service (DPS) 'Configure Scenario Execution Level' machine setting should be configured correctly for Windows Resource Exhaustion Detection and Resolution.

oval:org.secpod.oval:def:18840
The 'Delete data from devices running Microsoft firmware when a user logs off from the computer.' machine setting should be configured correctly.

oval:org.secpod.oval:def:18847
The 'Log File Debug Output Level' machine setting should be configured correctly.

oval:org.secpod.oval:def:18845
The 'Turn off AutoComplete integration with Input Panel' machine setting should be configured correctly.

oval:org.secpod.oval:def:18844
The Diagnostic Policy Service (DPS) 'Configure Scenario Execution Level' machine setting should be configured correctly for Windows Shutdown Performance Diagnostics.

oval:org.secpod.oval:def:18838
The 'Restrict unpacking and installation of gadgets that are not digitally signed.' machine setting should be configured correctly.

oval:org.secpod.oval:def:18837
Auditing of 'Audit process tracking' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18810
The 'Specify a Custom Active Power Plan' machine setting should be configured correctly.

oval:org.secpod.oval:def:18814
The 'Turn off Windows Defender' machine setting should be configured correctly.

oval:org.secpod.oval:def:8784
The "Domain Controller: Refuse machine account password changes" setting should be configured correctly.

oval:org.secpod.oval:def:18812
The 'Configure Background Sync' machine setting should be configured correctly.

oval:org.secpod.oval:def:18811
The 'Prevent backing up to network location' machine setting should be configured correctly.

oval:org.secpod.oval:def:18807
The 'Configure Corporate Windows Error Reporting' machine setting should be configured correctly.

oval:org.secpod.oval:def:18804
The 'Prevent installation of devices using drivers that match these device setup classes' machine setting should be configured correctly.

oval:org.secpod.oval:def:18808
The 'Configure Corrupted File Recovery Behavior' machine setting should be configured correctly.

oval:org.secpod.oval:def:18821
The 'Select the Sleep Button Action (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:18820
The 'Allow Enhanced Storage certificate provisioning' machine setting should be configured correctly.

oval:org.secpod.oval:def:18825
The 'Enable NTFS pagefile encryption' machine setting should be configured correctly.

oval:org.secpod.oval:def:18824
The 'Turn off 'Found New Hardware' balloons during device installation' machine setting should be configured correctly.

oval:org.secpod.oval:def:18823
The 'Configure RD Connection Broker farm name' machine setting should be configured correctly.

oval:org.secpod.oval:def:18822
The 'Controlled load service type' Layer-3 Differentiated Services Code Point (DSCP) value should be configured correctly for packets that conform to the flow specification.

oval:org.secpod.oval:def:18818
The 'Windows Firewall: Public: Apply local connection security rules' setting should be configured correctly.

oval:org.secpod.oval:def:18816
Auditing of 'Account Management: Computer Account Management' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18815
The 'Allow admin to install from Remote Desktop Services session' machine setting should be configured correctly.

oval:org.secpod.oval:def:8794
The "IP-HTTPS State" machine setting should be configured correctly.

oval:org.secpod.oval:def:18876
The 'Use forest search order' machine setting should be configured correctly for Key Distribution Center (KDC) searches.

oval:org.secpod.oval:def:18875
The 'Run startup scripts visible' machine setting should be configured correctly.

oval:org.secpod.oval:def:18874
The 'Custom Classes: Deny write access' machine setting should be configured correctly.

oval:org.secpod.oval:def:18873
The 'Tape Drives: Deny write access' machine setting should be configured correctly.

oval:org.secpod.oval:def:18879
Auditing of 'Object Access: SAM' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8764
The "Turn off Event Viewer "Events.asp" links" machine setting should be configured correctly.

oval:org.secpod.oval:def:18877
The 'CD and DVD: Deny write access' machine setting should be configured correctly.

oval:org.secpod.oval:def:8765
Turn Off Internet File Association Service

oval:org.secpod.oval:def:18872
Auditing of 'Audit system events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18871
The 'Allow user name hint' machine setting should be configured correctly.

oval:org.secpod.oval:def:18870
The 'ISATAP Router Name' machine setting should be configured correctly.

oval:org.secpod.oval:def:8761
The "Domain Controller: Allow server operators to schedule tasks" setting should be configured correctly.

oval:org.secpod.oval:def:18887
Auditing of 'Account Management: Application Group Management' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18884
Auditing of 'Object Access: Filtering Platform Connection' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18889
The 'Specify the Unattended Sleep Timeout (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:18888
Auditing of 'Account Logon: Other Account Logon Events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18881
Auditing of 'Account Logon: Credential Validation' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8771
The "Configure Automatic Updates" machine setting should be configured correctly.

oval:org.secpod.oval:def:18854
The 'Prevent backing up to local disks' machine setting should be configured correctly.

oval:org.secpod.oval:def:18852
The 'Select the Power Button Action (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:18851
The 'Ignore Delegation Failure' machine setting should be configured correctly.

oval:org.secpod.oval:def:8740
The "Prevent Windows Anytime Upgrade from running." machine setting should be configured correctly.

oval:org.secpod.oval:def:18857
The 'Allow installation of devices that match any of these device IDs' machine setting should be configured correctly.

oval:org.secpod.oval:def:8741
Do not create system restore point when new device driver installed

oval:org.secpod.oval:def:18856
The 'Prohibit rollback' machine setting should be configured correctly.

oval:org.secpod.oval:def:18850
The 'Allow Delegating Default Credentials with NTLM-only Server Authentication' machine setting should be configured correctly.

oval:org.secpod.oval:def:18865
The 'Initial DC Discovery Retry Setting for Background Callers' machine setting should be configured correctly.

oval:org.secpod.oval:def:18864
The 'Limit the maximum number of ranges that can be added to the file in a BITS job' machine setting should be configured correctly.

oval:org.secpod.oval:def:18863
The 'Turn on Script Execution' machine setting should be configured correctly.

oval:org.secpod.oval:def:18862
Auditing of 'DS Access: Directory Service Access' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18869
Auditing of 'Audit logon events' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8752
The 'Microsoft network server: Server SPN target name validation level' setting should be configured correctly.

oval:org.secpod.oval:def:18866
Auditing of 'Logon-Logoff: Account Lockout' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18861
The 'Selectively allow the evaluation of a symbolic link' machine setting should be configured correctly.

oval:org.secpod.oval:def:8759
The "Do not use temporary folders per session" machine setting should be configured correctly.

oval:org.secpod.oval:def:18859
The 'Log Access' machine setting should be configured correctly for the setup log.

oval:org.secpod.oval:def:8750
The "Do not allow COM port redirection" machine setting should be configured correctly.

oval:org.secpod.oval:def:18913
Auditing of 'Audit policy change' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18912
The 'Turn off automatic termination of applications that block or cancel shutdown' machine setting should be configured correctly.

oval:org.secpod.oval:def:18911
Auditing of 'Global Object Access Auditing: Registry' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18910
The 'Do not display Initial Configuration Tasks window automatically at logon' machine setting should be configured correctly.

oval:org.secpod.oval:def:18906
Auditing of 'Audit directory service access' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18905
The 'Do not turn off system power after a Windows system shutdown has occurred.' machine setting should be configured correctly.

oval:org.secpod.oval:def:18904
Auditing of 'Audit policy change' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18903
The 'Turn off desktop gadgets' machine setting should be configured correctly.

oval:org.secpod.oval:def:18909
Auditing of 'Global Object Access Auditing: File System' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18908
The 'Set compression algorithm for RDP data' machine setting should be configured correctly.

oval:org.secpod.oval:def:18907
The 'Turn off restore functionality' machine setting should be configured correctly.

oval:org.secpod.oval:def:18920
The 'Domain Location Determination URL' machine setting should be configured correctly.

oval:org.secpod.oval:def:18924
Auditing of 'Audit object access' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18922
The 'Hide previous versions list for remote files' machine setting should be configured correctly.

oval:org.secpod.oval:def:18915
The 'Traps for public community' machine setting should be configured correctly.

oval:org.secpod.oval:def:18914
The 'Start a program on connection' machine setting should be configured correctly.

oval:org.secpod.oval:def:18919
The 'Do not log users on with temporary profiles' machine setting should be configured correctly.

oval:org.secpod.oval:def:18918
The 'Turn off Routinely Taking Action' machine setting should be configured correctly.

oval:org.secpod.oval:def:18900
The 'Configure list of IEEE 1667 silos usable on your computer' machine setting should be configured correctly.

oval:org.secpod.oval:def:19368
The 'RPC Troubleshooting State Information' machine setting should be configured correctly.

oval:org.secpod.oval:def:19369
The 'For tablet pen input, don't show the Input Panel icon' machine setting should be configured correctly.

oval:org.secpod.oval:def:19364
The 'Set the Seed Server' machine setting should be configured correctly for IPv6 Global.

oval:org.secpod.oval:def:19365
The 'Guaranteed service type' Layer-3 Differentiated Services Code Point should be configured correctly for packets that do not conform to the flow specification.

oval:org.secpod.oval:def:19367
The 'Turn off access to the OEM and Microsoft branding section' machine setting should be configured correctly.

oval:org.secpod.oval:def:19360
The 'Specify maximum number of processes per Shell' machine setting should be configured correctly.

oval:org.secpod.oval:def:19362
The 'Turn off password security in Input Panel' machine setting should be configured correctly.

oval:org.secpod.oval:def:19363
The 'Make Parental Controls control panel visible on a Domain' machine setting should be configured correctly.

oval:org.secpod.oval:def:19379
The 'Configure the server address, refresh interval, and issuer certificate authority of a target Subscription Manager' machine setting should be configured correctly.

oval:org.secpod.oval:def:19375
The 'Best effort service type' Layer-3 Differentiated Services Code Point (DSCP) value should be configured correctly for packets that do not conform to the flow specification.

oval:org.secpod.oval:def:19376
The 'Do not allow font smoothing' machine setting should be configured correctly.

oval:org.secpod.oval:def:19377
The 'Prevent flicks' machine setting should be configured correctly.

oval:org.secpod.oval:def:19378
The 'Tag Windows Customer Experience Improvement data with Study Identifier' machine setting should be configured correctly.

oval:org.secpod.oval:def:19371
The 'Turn on recommended updates via Automatic Updates' machine setting should be configured correctly.

oval:org.secpod.oval:def:19372
The 'License server security group' machine setting should be configured correctly.

oval:org.secpod.oval:def:19373
The 'Specify the Unattended Sleep Timeout (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19374
The 'Prevent installation of removable devices' machine setting should be configured correctly.

oval:org.secpod.oval:def:19370
The 'Configure root certificate clean up' machine setting should be configured correctly.

oval:org.secpod.oval:def:19346
The 'Turn off numerical sorting in Windows Explorer' machine setting should be configured correctly.

oval:org.secpod.oval:def:19347
The 'Prevent installation of devices not described by other policy settings' machine setting should be configured correctly.

oval:org.secpod.oval:def:19348
The 'Enforce disk quota limit' machine setting should be configured correctly.

oval:org.secpod.oval:def:19349
The 'Apply the default user logon picture to all users' machine setting should be configured correctly.

oval:org.secpod.oval:def:19342
The 'Configure Default consent' machine setting should be configured correctly.

oval:org.secpod.oval:def:19343
The 'Turn on the Ability for Applications to Prevent Sleep Transitions (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19344
The 'Log event when quota limit exceeded' machine setting should be configured correctly.

oval:org.secpod.oval:def:19345
The 'All Removable Storage: Allow direct access in remote sessions' machine setting should be configured correctly.

oval:org.secpod.oval:def:19340
The 'Network control service type' Layer-3 Differentiated Services Code Point (DSCP) value should be configured correctly for packets that conform to the flow specification.

oval:org.secpod.oval:def:19341
The 'Turn off Windows presentation settings' machine setting should be configured correctly.

oval:org.secpod.oval:def:19357
The 'Turn off Active Help' machine setting should be configured correctly.

oval:org.secpod.oval:def:19358
The 'Diagnostics: Configure scenario retention' machine setting should be configured correctly.

oval:org.secpod.oval:def:19359
The 'Run Windows PowerShell scripts first at computer startup, shutdown' machine setting should be configured correctly.

oval:org.secpod.oval:def:19353
The 'Default quota limit and warning level' machine setting should be configured correctly.

oval:org.secpod.oval:def:19354
The 'Do not forcefully unload the users registry at user logoff' machine setting should be configured correctly.

oval:org.secpod.oval:def:19355
The 'Specify the System Sleep Timeout (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19356
The 'Specify the System Sleep Timeout (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19350
The 'Prevent Desktop Shortcut Creation' machine setting should be configured correctly.

oval:org.secpod.oval:def:19351
The 'Prohibit Flyweight Patching' machine setting should be configured correctly.

oval:org.secpod.oval:def:19352
The 'Corporate Site Prefix List' machine setting should be configured correctly.

oval:org.secpod.oval:def:19386
The 'Disallow Kerberos authentication' machine setting should be configured correctly for the WinRM client.

oval:org.secpod.oval:def:19387
The 'Qualitative service type' Layer-3 Differentiated Services Code Point (DSCP) value should be configured correctly for packets that conform to the flow specification.

oval:org.secpod.oval:def:19388
The 'Add Printer wizard - Network scan page (Managed network)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19389
The 'Customize consent settings' machine setting should be configured correctly.

oval:org.secpod.oval:def:19382
The 'Detect application failures caused by deprecated Windows DLLs' machine setting should be configured correctly.

oval:org.secpod.oval:def:19383
The 'Set roaming profile path for all users logging onto this computer' machine setting should be configured correctly.

oval:org.secpod.oval:def:19384
The 'Log Access' machine setting should be configured correctly for the security log.

oval:org.secpod.oval:def:19385
The 'Set rules for remote control of Remote Desktop Services user sessions' machine setting should be configured correctly.

oval:org.secpod.oval:def:19380
The 'Allow Applications to Prevent Automatic Sleep (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19381
The 'Disallow run-once backups' machine setting should be configured correctly.

oval:org.secpod.oval:def:19397
The 'Set the number of synchronization retries for servers running Password Synchronization' machine setting should be configured correctly.

oval:org.secpod.oval:def:19398
The 'Define Activation Security Check exemptions' machine setting should be configured correctly.

oval:org.secpod.oval:def:19399
The 'Set the Email IDs to which notifications are to be sent' machine setting should be configured correctly.

oval:org.secpod.oval:def:19393
The 'Limit the BITS Peercache size' machine setting should be configured correctly.

oval:org.secpod.oval:def:19394
The 'Prompt for credentials on the client computer' machine setting should be configured correctly.

oval:org.secpod.oval:def:19395
The 'Log Access' machine setting should be configured correctly for the system log.

oval:org.secpod.oval:def:19390
The 'Allow pruning of published printers' machine setting should be configured correctly.

oval:org.secpod.oval:def:19391
The 'Disable binding directly to IPropertySetStorage without intermediate layers.' machine setting should be configured correctly.

oval:org.secpod.oval:def:19392
The 'Limit the maximum number of files allowed in a BITS job' machine setting should be configured correctly.

oval:org.secpod.oval:def:7925
The host is installed with Microsoft .NET Framework 2.0 SP2 or 3.5.1 and is prone to Code access security info disclosure vulnerability. A flaw is present in the applications, which does not properly sanitize the output of a function when called from partially trusted code. Successful exploitation a ...

oval:org.secpod.oval:def:9292
The host is installed with Internet Explorer 8 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9716
The host is installed with Internet Explorer 8 and is prone to a CElement use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9719
The host is installed with Internet Explorer 8 and is prone to a CTreeNode use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:10777
The host is missing an important security update according to Microsoft security bulletin, MS13-029. The update is required to fix remote code execution vulnerability in Microsoft Windows Remote Desktop Client. A flaw is present in the application which fails to handle the specially crafted webpage. ...

oval:org.secpod.oval:def:10778
The host is installed with Microsoft Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, Server 2008 R2 and is prone to remote code execution vulnerability. A flaw is present in the application, which fails to handle specially crafted webpage. Successful exploitation coul ...

oval:org.secpod.oval:def:10941
The host is installed with Internet Explorer 8 or 9 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle an object in memory that has been deleted or has not been properly allocated. Successful exploitation could allow attackers to execute arbi ...

oval:org.secpod.oval:def:3726
The host is installed with Microsoft Windows XP or Windows Server 2003 or Windows Server 2008 or Windows Vista or Windows 7 or Windows Server 2008 R2 and is prone to remote code execution vulnerability. A flaw is present in the applications, which does not perform proper validation on input passed f ...

oval:org.secpod.oval:def:5628
The host is installed with Microsoft Office, Windows, and Silverlight and is prone TrueType Font parsing vulnerability. A flaw is present in the applications, which fails to handle a specially crafted TrueType font file. Successful exploitation could allow remote attackers to install programs, view, ...

oval:org.secpod.oval:def:5581
The host is installed with Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2 or R2 SP1, or Windows 7 or SP1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly enforce firewall rules for outbound broadcast packets. Successful ...

oval:org.secpod.oval:def:5635
The host is installed with Microsoft Windows and is prone privilege escalation vulnerability. A flaw is present in the application, which fails to handle the Windows kernel-mode driver. Successful exploitation could allow remote attackers to install programs, view, change, or delete data or create n ...

oval:org.secpod.oval:def:8180
The host is installed with Microsoft Windows XP SP2 or SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2 or R2 SP1, Windows 7 or SP1, Windows 8 or Windows Server 2012 and is prone to remote code execution vulnerability. A flaw is present in Windows DirectPlay, which fails ...

oval:org.secpod.oval:def:8181
The host is missing an important security update according to Microsoft bulletin, MS12-082. The update is required to fix remote code execution vulnerability. A flaw is present in Windows DirectPlay, which fails to properly handle specially crafted office documents. Successful exploitation allows at ...

oval:org.secpod.oval:def:7924
The host is installed with Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5.1 or 4 and is prone to reflection bypass vulnerability. A flaw is present in the applications, which fail to properly validate the permissions of objects performing reflection. Successful exploitation allows attackers to take ...

oval:org.secpod.oval:def:7926
The host is installed with Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5.1 or 4 and is prone to untrusted search path vulnerability. A flaw is present in the applications, which is caused when Entity Framework, a .NET Framework component, incorrectly restricts the path used for loading external lib ...

oval:org.secpod.oval:def:8179
The host is missing an important security update according to Microsoft security bulletin, MS12-083. The update is required to fix a security bypass vulnerability. A flaw is present in the IP-HTTPS Component, which fails to properly handle certificates. Successful exploitation could allow attackers ...

oval:org.secpod.oval:def:8178
The host is installed with Microsoft Windows Server 2008 R2 and is prone to a security bypass vulnerability. A flaw is present in the IP-HTTPS Component, which fails to properly handle certificates. Successful exploitation could allow attackers to bypass certificate validation checks.

oval:org.secpod.oval:def:8182
The host is installed with Windows XP, Windows Vista, Windows Server 2008, Windows Server 2008 R2, Windows Server 2003 or Windows 7 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to parse filenames. Successful exploitation could allow attacke ...

oval:org.secpod.oval:def:8183
The host is missing a critical security update according to Microsoft security bulletin, MS12-081. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to parse filenames. Successful exploitation could allow attackers to execute arbit ...

oval:org.secpod.oval:def:7927
The host is installed with Microsoft .NET Framework 2.0 SP2, 3.5.1, 4 or 4.5 and is prone to Web proxy auto-discovery vulnerability. A flaw is present in the applications, which is caused by a lack of validation when the .NET Framework acquires the default web proxy settings and executes JavaScript ...

oval:org.secpod.oval:def:7928
The host is installed with Microsoft .NET Framework 4 or 4.5 and is prone to WPF reflection optimization vulnerability. A flaw is present in the applications, which fails to properly validate permissions of objects involved with reflection. Successful exploitation allows attackers to take complete c ...

oval:org.secpod.oval:def:7929
Th host is missing a critical security update according to Microsoft Security Bulletin, MS12-074. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to handle certain vectors and properly perform validations. Successful exploitation allows a ...

oval:org.secpod.oval:def:8192
The host is installed with Windows XP, Windows Vista, Windows Server 2008,Windows Server 2008 R2, Windows Server 2003 or Windows 7 and is prone to remote code execution vulnerabilities. The flaws are present in the Windows kernel, which fails to handle a specially crafted TrueType font file. Success ...

oval:org.secpod.oval:def:8197
The host is missing a critical security update according to Microsoft security bulletin MS12-077. The update is required to fix multiple use-after-free vulnerabilities. The flaws are present in the application, which fails to handle a deleted object. Successful exploitation could allow attackers to ...

oval:org.secpod.oval:def:8193
The host is installed with Internet Explorer 6, 7, 8, 9 or 10 and is prone to an InjectHTMLStream use-after-free vulnerability. A flaw is present in the application, which fails to handle a deleted object. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:8195
The host is installed with Internet Explorer 9 and is prone to an CMarkup use-after-free vulnerability. A flaw is present in the application, which fails to handle a deleted object. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:8196
The host is installed with Internet Explorer 9 or 10 and is prone to an improper ref counting use-after-free vulnerability. A flaw is present in the application, which fails to handle a deleted or improperly initialized object. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:8333
The host is installed with Windows Vista, Windows Server 2008,Windows Server 2008 R2, Windows 7, Windows 8 or Windows Server 2012 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle window broadcast messages. Successful exploitat ...

oval:org.secpod.oval:def:8334
The host is missing an important security update according to MS bulletin, MS13-005 and is prone to an privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle window broadcast messages. Successful exploitation could allow attackers to take complete co ...

oval:org.secpod.oval:def:8348
The host is installed with Microsoft XML Core Services 5.0, 6.0 on Microsoft Windows or with Microsoft Groove Server 2007, Microsoft SharePoint Server 2007, Microsoft Expression Web 2, Microsoft Expression Web, Microsoft Office Compatibility Pack, Microsoft Word Viewer, Microsoft Office 2007, or Mic ...

oval:org.secpod.oval:def:8344
The host is missing an important security update according Microsoft bulletin MS13-007. The update is required to fix a denial of service vulnerability. A flaw is present in the applications, which fail to handle crafted HTTP requests. Successful exploitation could allow attackers to crash the servi ...

oval:org.secpod.oval:def:8342
The host is installed with Microsoft .NET Framework 3.5 Service Pack 1, Microsoft .NET Framework 4 or Management OData IIS Extension and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle crafted HTTP requests. Successful exploitation could all ...

oval:org.secpod.oval:def:8351
The host is installed with Microsoft XML Core Services 4.0, 5.0, 6.0 on Microsoft Windows or with Microsoft Groove Server 2007, Microsoft SharePoint Server 2007, Microsoft Expression Web 2, Microsoft Expression Web, Microsoft Office Compatibility Pack, Microsoft Word Viewer, Microsoft Office 2007, M ...

oval:org.secpod.oval:def:8352
The host is missing a critical security update according to MS13-002. The update is required to fix multiple MSXML vulnerabilities. The flaws are present in the applications, which fail to properly handle XML content. Successful exploitation allows attackers to execute arbitrary code.

oval:org.secpod.oval:def:8335
The host is installed with Microsoft Windows Vista, Windows 7, Windows server 2008, Windows server 208 R2, Windows 8 or Windows server 2012 and is prone to security feature bypass vulnerability. A flaw is present in the application, which fails to properly handle SSL/TLS session version negotiation. ...

oval:org.secpod.oval:def:8336
The host is missing an impoetant security update according to Microsoft bulletin, MS13-006. The update is required to fix security feature bypass vulnerability. A flaw is present in the application, which fails to properly handle SSL/TLS session version negotiation. Successful exploitation allows at ...

oval:org.secpod.oval:def:9291
The host is installed with Internet Explorer 8 or 9 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9286
The host is installed with Internet Explorer 6, 7, 8 or 9 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9284
The host is installed with Internet Explorer 6, 7, 8, 9 or 10 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9285
The host is installed with Internet Explorer 6, 7, 8 or 9 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9240
The host is installed with Microsoft Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8 or Windows Server 2012 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a connection termination sequence. Succ ...

oval:org.secpod.oval:def:9241
The host is missing an important security update according to Microsoft security bulletin MS13-018. The update is required to fix a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a connection termination sequence. Successful exploitation could a ...

oval:org.secpod.oval:def:9294
The host is installed with Internet Explorer 6, 7, 8, 9 or 10 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9295
The host is installed with Internet Explorer 6, 7, 8, 9 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9296
The host is installed with Internet Explorer 6, 7, 8, 9 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9275
The host is installed with Microsoft Windows 7, SP1, Windows Server 2008 R2 or SP1 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows CSRSS improperly handles objects in memory. Successful exploitation allows attackers to run ...

oval:org.secpod.oval:def:9712
The host is installed with Internet Explorer 6,7,8,9 or 10 and is prone to an onresize use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9713
The host is installed with Internet Explorer 6,7,8,9 or 10 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9715
The host is installed with Internet Explorer 6,7,8,9 or 10 and is prone to a CCaret use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9714
The host is installed with Internet Explorer 6,7,8,9 or 10 and is prone to a CMarkupBehaviorContext use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9711
The host is missing a critical security update according to Microsoft bulletin, MS13-012 and is prone to multiple use after free vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9717
The host is installed with Internet Explorer 6,7,8,9 or 10 and is prone to a GetMarkupPtr use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9718
The host is installed with Internet Explorer 6,7,8,9 or 10 and is prone to a use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9720
The host is installed with Internet Explorer 6,7,8,9 or 10 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:10949
The host is installed with Microsoft Internet Explorer 8 or 9 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Successful exploitation could allow attackers to execute arbitrary c ...

oval:org.secpod.oval:def:9250
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9251
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9246
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9247
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9248
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9249
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9244
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, Windows 7, Server 2012 or Windows 8 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver i ...

oval:org.secpod.oval:def:9245
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, Windows 7, Server 2012 or Windows 8 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver i ...

oval:org.secpod.oval:def:9274
The host is missing an important security update according to Microsoft bulletin, MS13-016. The update is required to fix multiple elevation of privilege vulnerabilities. The flaws are present in the application, which is caused when the Windows kernel-mode driver improperly handles objects in memor ...

oval:org.secpod.oval:def:9257
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9258
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9259
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9253
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9254
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9255
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9256
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9252
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9260
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9268
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9269
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9264
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9265
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9266
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9267
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9261
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9262
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9263
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9239
The host is missing an important security update according to Microsoft bulletin, MS13-017. The update is required to fix multiple elevation of privilege vulnerabilities. The flaws are present in the application, which is caused when the Windows kernel improperly handles objects in memory. Successfu ...

oval:org.secpod.oval:def:9235
The host is installed with Microsoft Windows Server 2008 R2 or Windows Server 2012 and is prone to denial of service vulnerability. A flaw is present in the NFS server, which fails to handle specially crafted request. Successful exploitation allows remote attackers to cause a denial of service on th ...

oval:org.secpod.oval:def:9236
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, Windows 7 or Windows 8 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel improperly handles objects ...

oval:org.secpod.oval:def:9237
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, Windows 7 or Windows 8 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel improperly handles objects ...

oval:org.secpod.oval:def:9238
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, Windows 7 or Windows 8 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel improperly handles objects ...

oval:org.secpod.oval:def:9270
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9271
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9272
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista, or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles objec ...

oval:org.secpod.oval:def:9273
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, Server 2008 R2, Server 2012, Windows Vista or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused when the Windows kernel-mode driver improperly handles object ...

oval:org.secpod.oval:def:9739
The host is missing an important security update according to MS bulletin, MS13-027 and is prone to an privilege escalation vulnerability. A flaw is present in the kernel-mode drivers, which fails to properly handle objects in memory. Successful exploitation could allow attackers to run arbitrary co ...

oval:org.secpod.oval:def:9742
The host is installed with Microsoft Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8 or Windows Server 2012 and is prone to a privilege escalation vulnerability. A flaw is present in the kernel-mode drivers, which fails to handle obje ...

oval:org.secpod.oval:def:9741
The host is installed with Microsoft Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8 or Windows Server 2012 and is prone to a privilege escalation vulnerability. A flaw is present in the kernel-mode drivers, which fails to handle obje ...

oval:org.secpod.oval:def:9740
The host is installed with Microsoft Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8 or Windows Server 2012 and is prone to a privilege escalation vulnerability. A flaw is present in the kernel-mode drivers, which fails to handle obje ...

oval:org.secpod.oval:def:10733
The host is installed with Microsoft Windows XP, Server 2003, Server 2008, R2, Server 2012, Windows Vista, Windows 7 or Windows 8 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which fails to handle objects in memory. Successful exploitation allows attack ...

oval:org.secpod.oval:def:10734
The host is missing an important security update according to Microsoft security bulletin, MS13-036. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle certain vectors related to memory and crafted files. Successful exploitation al ...

oval:org.secpod.oval:def:10740
The host is missing an important security update according to Microsoft security bulletin MS13-031. The update is required to fix multiple race condition vulnerabilities. The flaws are present in the application, which fails to properly handle objects in memory. Successful exploitation could allow a ...

oval:org.secpod.oval:def:10738
The host is installed with Microsoft Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012 and is prone to a race condition vulnerability. A flaw is present in the application, which fails to properly handle objec ...

oval:org.secpod.oval:def:10736
The host is installed with Microsoft Windows Server 2008, R2, Server 2012, Windows Vista, Windows 7 or Windows 8 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which fails to handle objects in memory. Successful exploitation allows attackers to gain eleva ...

oval:org.secpod.oval:def:10737
The host is installed with Microsoft Windows Server 2008, R2, Windows Vista or Windows 7 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which fails to handle objects in memory. Successful exploitation allows attackers to gain elevated privileges and read ...

oval:org.secpod.oval:def:10950
The host is installed with Microsoft Internet Explorer 6 through 8 and is prone to JSON array information disclosure vulnerability. A flaw is present in the application, which fails to properly restrict data access by VBScript. Successful exploitation could allow attackers to perform cross-domain re ...

oval:org.secpod.oval:def:10741
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Successful exploitation could allow attackers to execute arbit ...

oval:org.secpod.oval:def:10742
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Successful exploitation could allow attackers to execute arbit ...

oval:org.secpod.oval:def:10743
The host is missing a critical security update according to Microsoft Security bulletin MS13-028. The update is required to fix multiple use-after-free vulnerabilities. The flaws are present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Succes ...

oval:org.secpod.oval:def:10948
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Successful exploitation could allow attackers to execute arbit ...

oval:org.secpod.oval:def:10952
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Successful exploitation could allow attackers to execute arbit ...

oval:org.secpod.oval:def:10953
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Successful exploitation could allow attackers to execute arbit ...

oval:org.secpod.oval:def:10966
The host is installed with Microsoft Windows Vista, Windows Server 2008 or R2 , Windows 7 SP1, Windows 8, Windows Server 2012 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle objects in memory. Successful exploitation could al ...

oval:org.secpod.oval:def:14200
The host is installed with Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Windows 8 or Windows 2012 and is prone to a privilege escalation vulnerability. A flaw is present in the Windows Print Spooler components which fails to validate a specially crafted print job. Successfu ...

oval:org.secpod.oval:def:10847
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Successful exploitation allows attackers to execute arbitrary cod ...

oval:org.secpod.oval:def:10968
The host is installed with Microsoft Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, R2, Windows 7, Windows 8, Windows Server 2012 and is prone to a windows handle vulnerability. A flaw is present in the application which fails to properly handle deleted objects in memory. Succe ...

oval:org.secpod.oval:def:10957
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Successful exploitation could allow attackers to execute arbit ...

oval:org.secpod.oval:def:14178
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a deleted object in memory. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:14176
The host is installed with Microsoft Internet Explorer 8 or 9 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a deleted object in memory. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:14177
The host is installed with Microsoft Internet Explorer 8 through 10 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a deleted object in memory. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:14175
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a deleted object in memory. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:14180
The host is installed with Microsoft Internet Explorer 7, 8 or 9 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a deleted object in memory. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:14185
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a deleted object in memory. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:14187
The host is installed with Microsoft Internet Explorer 8 through 10 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a deleted object in memory. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:14192
The host is installed with Microsoft Internet Explorer 8 or 9 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a deleted object in memory. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:14193
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a deleted object in memory. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:14191
The host is installed with Microsoft Internet Explorer 6 through 10 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a deleted object in memory. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:14197
The host is installed with Microsoft Windows Vista, Windows Server 2008, Windows Server 2008 R2, Windows 7, Windows 8 or Windows Server 2012 and is prone to a TCP/IP integer overflow vulnerability. A flaw is present in the application, which fails to properly handle packets during TCP connection. S ...

oval:org.secpod.oval:def:8845
The 'System cryptography: Force strong key protection for user keys stored on the computer' setting should be configured correctly.

oval:org.secpod.oval:def:8840
The 'MSS: (WarningLevel) Percentage threshold for the security event log at which the system will generate a warning' setting should be configured correctly.

oval:org.secpod.oval:def:8853
The "Turn off Internet download for Web publishing and online ordering wizards" machine setting should be configured correctly.

oval:org.secpod.oval:def:8824
The 'Network access: Named Pipes that can be accessed anonymously' setting should be configured correctly.

oval:org.secpod.oval:def:8837
The 'System objects: Require case insensitivity for non-Windows subsystems' setting should be configured correctly.

oval:org.secpod.oval:def:8839
The 'System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links)' setting should be configured correctly.

oval:org.secpod.oval:def:8808
The 'MSS: (DisableIPSourceRouting IPv6) IP source routing protection level (protects against packet spoofing)' setting should be configured correctly.

oval:org.secpod.oval:def:19444
The 'Allow Standby States (S1-S3) When Sleeping (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:8814
The "Enable user control over installs" machine setting should be configured correctly.

oval:org.secpod.oval:def:8883
Turn off downloading of print drivers over HTTP

oval:org.secpod.oval:def:8876
Turn off Autoplay for non-volume devices

oval:org.secpod.oval:def:8874
Prevent printing over HTTP.

oval:org.secpod.oval:def:19089
The 'Backup log automatically when full' machine setting should be configured correctly for the setup log.

oval:org.secpod.oval:def:19094
Auditing of 'Object Access: Filtering Platform Packet Drop' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19090
The 'Deny write access to removable drives not protected by BitLocker' machine setting should be configured correctly.

oval:org.secpod.oval:def:19065
Auditing of 'Object Access: Detailed File Share' events on failure should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19483
The 'Require additional authentication at startup' machine setting should be configured correctly.

oval:org.secpod.oval:def:19480
The 'Prevent memory overwrite on restart' machine setting should be configured correctly.

oval:org.secpod.oval:def:19499
The 'Choose how BitLocker-protected removable drives can be recovered' machine setting should be configured correctly.

oval:org.secpod.oval:def:19465
The 'Backup log automatically when full' machine setting should be configured correctly for the application log.

oval:org.secpod.oval:def:19029
The 'Shutdown: Clear virtual memory pagefile' setting should be configured correctly.

oval:org.secpod.oval:def:19537
The 'Choose how BitLocker-protected operating system drives can be recovered' machine setting should be configured correctly.

oval:org.secpod.oval:def:19577
The 'Backup log automatically when full' machine setting should be configured correctly for the system log.

oval:org.secpod.oval:def:19198
The 'Turn off Data Execution Prevention for HTML Help Executible' machine setting should be configured correctly.

oval:org.secpod.oval:def:19589
The 'Turn Off the Display (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:19581
The 'Configure use of passwords for fixed data drives' machine setting should be configured correctly.

oval:org.secpod.oval:def:19595
The 'Configure use of smart cards on removable data drives' machine setting should be configured correctly.

oval:org.secpod.oval:def:19164
The 'Provide the unique identifiers for your organization' machine setting should be configured correctly.

oval:org.secpod.oval:def:19172
The 'Choose how BitLocker-protected fixed drives can be recovered' machine setting should be configured correctly.

oval:org.secpod.oval:def:19155
The 'Configure use of smart cards on fixed data drives' machine setting should be configured correctly.

oval:org.secpod.oval:def:19158
The 'Do not process the legacy run list' machine setting should be configured correctly.

oval:org.secpod.oval:def:18793
The 'Configure use of passwords for removable data drives' machine setting should be configured correctly.

oval:org.secpod.oval:def:19625
The 'Require message integrity' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' setting should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19626
The 'Require message confidentiality' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' setting should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19628
The 'Require message integrity' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' setting should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19623
The 'Require NTLMv2 session security' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' setting should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19632
The 'Access Credential Manager as a trusted caller' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:19630
The 'Require message confidentiality' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' setting should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19629
The 'Require NTLMv2 session security' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' setting should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18742
Windows Firewall should allow or block outbound connections by default as appropriate for the Private Profile.

oval:org.secpod.oval:def:18740
Windows Firewall should allow or block outbound connections by default as appropriate for the Domain Profile.

oval:org.secpod.oval:def:19255
The 'Validate smart card certificate usage rule compliance' machine setting should be configured correctly.

oval:org.secpod.oval:def:19250
The 'Backup log automatically when full' machine setting should be configured correctly for the security log.

oval:org.secpod.oval:def:19228
The 'Turn off location' machine setting should be configured correctly.

oval:org.secpod.oval:def:19233
The 'Control use of BitLocker on removable drives' machine setting should be configured correctly.

oval:org.secpod.oval:def:8726
The "Turn off Windows Update device driver searching" machine setting should be configured correctly.

oval:org.secpod.oval:def:8730
The 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' setting should be configured correctly.

oval:org.secpod.oval:def:18839
The 'Allow enhanced PINs for startup' machine setting should be configured correctly.

oval:org.secpod.oval:def:8789
The 'Network security: Allow LocalSystem NULL session fallback' setting should be configured correctly.

oval:org.secpod.oval:def:18805
Windows Firewall should allow or block outbound connections by default as appropriate for the Public Profile.

oval:org.secpod.oval:def:8796
The 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' setting should be configured correctly.

oval:org.secpod.oval:def:8791
The 'Network access: Shares that can be accessed anonymously' setting should be configured correctly.

oval:org.secpod.oval:def:8767
The 'MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)' setting should be configured correctly.

oval:org.secpod.oval:def:8776
The 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' setting should be configured correctly.

oval:org.secpod.oval:def:18849
The 'Turn Off the Display (On Battery)' machine setting should be configured correctly.

oval:org.secpod.oval:def:18867
The 'Interactive logon: Require Domain Controller authentication to unlock workstation' setting should be configured correctly.

oval:org.secpod.oval:def:8754
The 'Audit: Audit the use of Backup and Restore privilege' setting should be configured correctly.

oval:org.secpod.oval:def:19366
The 'Allow access to BitLocker-protected removable data drives from earlier versions of Windows' machine setting should be configured correctly.

oval:org.secpod.oval:def:19361
The 'Deny write access to fixed drives not protected by BitLocker' machine setting should be configured correctly.

oval:org.secpod.oval:def:19396
The 'Allow Standby States (S1-S3) When Sleeping (Plugged In)' machine setting should be configured correctly.

oval:org.secpod.oval:def:9297
The host is missing a critical security update according to Microsoft security bulletin, MS13-009. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary ...

oval:org.secpod.oval:def:9287
The host is installed with Internet Explorer 7, 8, 9 or 10 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:8844
The "Maximum Log Size (KB)" machine setting should be configured correctly for the secirity log.

oval:org.secpod.oval:def:8841
The 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' setting should be configured correctly.

oval:org.secpod.oval:def:8842
The 'User Account Control: Admin Approval Mode for the Built-in Administrator account' setting should be configured correctly.

oval:org.secpod.oval:def:8848
Reset Account Lockout Counter After

oval:org.secpod.oval:def:8855
The "Maximum Log Size (KB)" machine setting should be configured correctly for the application log.

oval:org.secpod.oval:def:8850
The "Set time limit for disconnected sessions" machine setting should be configured correctly.

oval:org.secpod.oval:def:8858
The "Maximum Log Size (KB)" machine setting should be configured correctly for the system log.

oval:org.secpod.oval:def:8822
The 'Network access: Restrict anonymous access to Named Pipes and Shares' setting should be configured correctly.

oval:org.secpod.oval:def:8823
The 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted (3 recommended, 5 is default)' setting should be configured correctly.

oval:org.secpod.oval:def:8820
The 'Interactive logon: Prompt user to change password before expiration' setting should be configured correctly.

oval:org.secpod.oval:def:8829
The 'Microsoft network client: Digitally sign communications (always)' setting should be configured correctly.

oval:org.secpod.oval:def:8833
The 'Microsoft network server: Digitally sign communications (if client agrees)' setting should be configured correctly.

oval:org.secpod.oval:def:8835
The 'Microsoft network server: Disconnect clients when logon hours expire' setting should be configured correctly.

oval:org.secpod.oval:def:8830
The 'Microsoft network client: Digitally sign communications (if server agrees)' setting should be configured correctly.

oval:org.secpod.oval:def:8831
The built-in Administrator account should be correctly named.

oval:org.secpod.oval:def:8836
The 'Network security: LAN Manager authentication level' setting should be configured correctly.

oval:org.secpod.oval:def:8838
The 'Microsoft network server: Digitally sign communications (always)' setting should be configured correctly.

oval:org.secpod.oval:def:19441
The 'Server Authentication Certificate Template' machine setting should be configured correctly.

oval:org.secpod.oval:def:8809
The "Turn off Search Companion content file updates" machine setting should be configured correctly.

oval:org.secpod.oval:def:8803
The 'User Account Control: Virtualize file and registry write failures to per-user locations' setting should be configured correctly.

oval:org.secpod.oval:def:8804
The 'Domain member: Digitally encrypt or sign secure channel data (always)' setting should be configured correctly.

oval:org.secpod.oval:def:8806
The "Restrictions for Unauthenticated RPC clients" machine setting should be configured correctly.

oval:org.secpod.oval:def:8812
The 'Domain member: Maximum machine account password age' setting should be configured correctly.

oval:org.secpod.oval:def:8813
The 'Store passwords using reversible encryption' setting should be configured correctly.

oval:org.secpod.oval:def:19456
The 'Allow users to connect remotely using Remote Desktop Services' machine setting should be configured correctly.

oval:org.secpod.oval:def:19452
The 'Allow Remote Shell Access' machine setting should be configured correctly.

oval:org.secpod.oval:def:8818
The 'User Account Control: Only elevate executables that are signed and validated' setting should be configured correctly.

oval:org.secpod.oval:def:8819
The 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' setting should be configured correctly.

oval:org.secpod.oval:def:18953
Auditing of 'Object Access: Handle Manipulation' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18962
The 'Windows Firewall: Private: Apply local connection security rules' setting should be configured correctly.

oval:org.secpod.oval:def:18960
The 'Retain old events' machine setting should be configured correctly for the application log.

oval:org.secpod.oval:def:18935
Auditing of 'Logon-Logoff: Other Logon Logoff Events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18928
The 'Network Security: Restrict NTLM: Outgoing NTLM traffic to remote servers' setting should be configured correctly.

oval:org.secpod.oval:def:18927
Windows Firewall should allow or block inbound connections by default as appropriate for the Private Profile.

oval:org.secpod.oval:def:18929
Auditing of 'Account Management: Computer Account Management' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18942
The 'Deny log on through Remote Desktop Services' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:18940
The 'Domain member: Digitally encrypt secure channel data (when possible)' setting should be configured correctly.

oval:org.secpod.oval:def:18943
Auditing of 'System: Other System Events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18997
Windows Firewall should allow or block inbound connections by default as appropriate for the Domain Profile.

oval:org.secpod.oval:def:8885
Turn off the "Publish to Web" task for files and folders

oval:org.secpod.oval:def:8880
This policy setting allows you to specify the maximum amount of time that an active Terminal Services session can be idle (without user input) before it is automatically disconnected. (15 min)

oval:org.secpod.oval:def:8898
This definition tests the the maximum allowed size of the setup log is at least as big as the supplied value.

oval:org.secpod.oval:def:8899
Solicited Remote Assistance

oval:org.secpod.oval:def:8894
Require a Password when a Computer Wakes (Plugged in)

oval:org.secpod.oval:def:8895
Set client connection encryption level

oval:org.secpod.oval:def:8897
Terminal Services / Remote Desktop Services - Local drives prevented from sharing with Terminal Servers.

oval:org.secpod.oval:def:8892
The system is configured to allow unsolicited remote assistance offers.

oval:org.secpod.oval:def:8866
Always prompt client for password upon connection

oval:org.secpod.oval:def:18973
Auditing of 'Logon-Logoff: IPsec Main Mode' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8861
The "Allow remote access to the Plug and Play interface" machine setting should be configured correctly.

oval:org.secpod.oval:def:18978
Auditing of 'Logon-Logoff: IPsec Extended Mode' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8877
Default behavior for AutoRun

oval:org.secpod.oval:def:8878
Enumerate administrator accounts on elevation

oval:org.secpod.oval:def:8875
Allowing unsecure RPC communication exposes the server to man in the middle attacks and data disclosure attacks. A man in the middle attack occurs when an intruder captures packets between a client and server and modifies them before allowing the packets to be exchanged. Usually the attacker will mo ...

oval:org.secpod.oval:def:19085
The 'Allow Basic authentication' machine setting should be configured correctly for the WinRM service.

oval:org.secpod.oval:def:19067
The Windows Firewall should be enabled or disabled as appropriate for the Private Profile.

oval:org.secpod.oval:def:19066
Auditing of 'Logon-Logoff: Logoff' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19079
Display of a notification to the user when Windows Firewall blocks network activity should be enabled or disabled as appropriate for the public profile.

oval:org.secpod.oval:def:19071
Auditing of 'Logon-Logoff: Logon' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19073
Auditing of 'Object Access: Application Generated' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19006
Auditing of 'System: Security State Change' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19001
Auditing of 'Account Management: Other Account Management Events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19003
Auditing of 'Privilege Use: Sensitive Privilege Use' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19016
Auditing of 'Detailed Tracking: RPC Events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19018
Auditing of 'System: Security System Extension' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19014
Display of a notification to the user when Windows Firewall blocks network activity should be enabled or disabled as appropriate for the domain profile.

oval:org.secpod.oval:def:19015
Auditing of 'Object Access: File Share' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19492
The 'Allow unencrypted traffic' machine setting should be configured correctly for the WinRM client.

oval:org.secpod.oval:def:19478
The 'Reschedule Automatic Updates scheduled installations' machine setting should be configured correctly.

oval:org.secpod.oval:def:19052
Auditing of 'Account Logon: Kerberos Authentication Service' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19023
Auditing of 'Detailed Tracking: Process Termination' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19020
Auditing of 'System: System Integrity' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19021
The 'Windows Firewall: Domain: Apply local connection security rules' setting should be configured correctly.

oval:org.secpod.oval:def:19034
The 'Retain old events' machine setting should be configured correctly for the system log.

oval:org.secpod.oval:def:19035
Auditing of 'DS Access: Detailed Directory Service Replication' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19030
The Windows Firewall should be enabled or disabled as appropriate for the Public Profile.

oval:org.secpod.oval:def:19508
The 'Do not process the run once list' machine setting should be configured correctly.

oval:org.secpod.oval:def:19569
The 'Do not allow local administrators to customize permissions' machine setting should be configured correctly.

oval:org.secpod.oval:def:8925
The 'Accounts: Guest account status' setting should be configured correctly.

oval:org.secpod.oval:def:8926
The 'Accounts: Limit local account use of blank passwords to console logon only' setting should be configured correctly.

oval:org.secpod.oval:def:8927
The 'Devices: Prevent users from installing printer drivers' setting should be configured correctly.

oval:org.secpod.oval:def:8907
Terminal Services / Remote Desktop Service - Prevent password saving in the Remote Desktop Client

oval:org.secpod.oval:def:8908
Customer Experience Improvement Program

oval:org.secpod.oval:def:8915
The "Require a Password When a Computer Wakes (On Battery)" machine setting should be configured correctly.

oval:org.secpod.oval:def:19186
The 'Require use of specific security layer for remote (RDP) connections' machine setting should be configured correctly.

oval:org.secpod.oval:def:19183
The 'Allow unencrypted traffic' machine setting should be configured correctly for the WinRM service.

oval:org.secpod.oval:def:19108
Auditing of 'Object Access: Other Object Access Events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19102
Auditing of 'Policy Change: Authentication Policy Change' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19586
The 'Disallow Digest authentication' machine setting should be configured correctly.

oval:org.secpod.oval:def:19110
Auditing of 'Privilege Use: Non Sensitive Privilege Use' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18798
The 'Allow Basic authentication' machine setting should be configured correctly for the WinRM client.

oval:org.secpod.oval:def:18796
Auditing of 'Account Logon: Other Account Logon Events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19627
The 'Require 128-bit encryption' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' setting should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18778
The 'Require user authentication for remote connections by using Network Level Authentication' machine setting should be configured correctly.

oval:org.secpod.oval:def:19624
The 'Require 128-bit encryption' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' setting should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18773
The 'Retain old events' machine setting should be configured correctly for the setup log.

oval:org.secpod.oval:def:18771
The 'Do not display 'Install Updates and Shut Down' option in Shut Down Windows dialog box' machine setting should be configured correctly.

oval:org.secpod.oval:def:18770
Auditing of 'Object Access: Filtering Platform Connection' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18788
Auditing of 'Object Access: Detailed File Share' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18787
Auditing of 'System: IPsec Driver' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19205
The 'Set time limit for active Remote Desktop Services sessions' machine setting should be configured correctly.

oval:org.secpod.oval:def:19214
The 'Do not adjust default option to 'Install Updates and Shut Down' in Shut Down Windows dialog box' machine setting should be configured correctly.

oval:org.secpod.oval:def:19210
The 'Configure minimum PIN length for startup' machine setting should be configured correctly.

oval:org.secpod.oval:def:7706
MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires (0 recommended)

oval:org.secpod.oval:def:18755
Auditing of 'Account Management: User Account Management' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18754
Auditing of 'Account Management: Distribution Group Management' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18752
Auditing of 'Account Logon: Kerberos Service Ticket Operations' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:19600
The 'Always install with elevated privileges' machine setting should be configured correctly.

oval:org.secpod.oval:def:18757
Auditing of 'Audit directory service access' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18756
Auditing of 'DS Access: Directory Service Replication' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18751
Auditing of 'Account Logon: Credential Validation' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18749
The 'Windows Firewall: Public: Apply local firewall rules' setting should be configured correctly.

oval:org.secpod.oval:def:18764
The 'Network Security: Restrict NTLM: NTLM authentication in this domain' setting should be configured correctly.

oval:org.secpod.oval:def:18763
Auditing of 'Object Access: Registry' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18769
Auditing of 'Object Access: File System' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18761
Auditing of 'Object Access: Kernel Object' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18760
Auditing of 'Object Access: Certification Services' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18733
The 'Domain member: Digitally sign secure channel data (when possible)' setting should be configured correctly.

oval:org.secpod.oval:def:18735
The 'Network Security: Restrict NTLM: Add server exceptions in this domain' setting should be configured correctly.

oval:org.secpod.oval:def:18744
The 'Windows Firewall: Private: Apply local firewall rules' setting should be configured correctly.

oval:org.secpod.oval:def:18748
Windows Firewall should allow or block inbound connections by default as appropriate for the Public Profile.

oval:org.secpod.oval:def:18747
The 'Interactive logon: Display user information when the session is locked.' setting should be configured correctly.

oval:org.secpod.oval:def:18739
The 'Network Security: Restrict NTLM: Incoming NTLM traffic' setting should be configured correctly.

oval:org.secpod.oval:def:19288
The 'No auto-restart with logged on users for scheduled automatic updates installations' machine setting should be configured correctly.

oval:org.secpod.oval:def:19295
The 'Allow access to BitLocker-protected fixed data drives from earlier versions of Windows' machine setting should be configured correctly.

oval:org.secpod.oval:def:8723
The 'Network access: Do not allow storage of passwords and credentials for network authentication' setting should be configured correctly.

oval:org.secpod.oval:def:8724
The 'Network access: Let Everyone permissions apply to anonymous users' setting should be configured correctly.

oval:org.secpod.oval:def:8727
The 'Microsoft network server: Amount of idle time required before suspending session' setting should be configured correctly.

oval:org.secpod.oval:def:8729
The 'Recovery console: Allow automatic administrative logon' setting should be configured correctly.

oval:org.secpod.oval:def:8736
The 'Audit: Audit the access of global system objects' setting should be configured correctly.

oval:org.secpod.oval:def:8731
The 'Shutdown: Allow system to be shut down without having to log on' setting should be configured correctly.

oval:org.secpod.oval:def:8737
The 'MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes' setting should be configured correctly.

oval:org.secpod.oval:def:8738
The 'User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop' setting should be configured correctly.

oval:org.secpod.oval:def:8739
The 'Domain member: Require strong (Windows 2000 or later) session key' setting should be configured correctly.

oval:org.secpod.oval:def:18898
Auditing of 'Policy Change: Authorization Policy Change' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18895
The 'Devices: Restrict CD-ROM access to locally logged-on user only' setting should be configured correctly.

oval:org.secpod.oval:def:18890
Auditing of 'Detailed Tracking: DPAPI Activity' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8711
The 'Network access: Do not allow anonymous enumeration of SAM accounts' setting should be configured correctly.

oval:org.secpod.oval:def:8710
The 'MSS: (NoDefaultExempt) Configure IPSec exemptions for various types of network traffic.' setting should be configured correctly.

oval:org.secpod.oval:def:8715
Switch to the secure desktop when prompting for elevation

oval:org.secpod.oval:def:8716
The 'Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings' setting should be configured correctly.

oval:org.secpod.oval:def:18836
The 'Deny log on as a batch job' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:18835
Auditing of 'Privilege Use: Other Privilege Use Events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18846
Display of a notification to the user when Windows Firewall blocks network activity should be enabled or disabled as appropriate for the private profile.

oval:org.secpod.oval:def:8788
The 'Interactive logon: Do not require CTRL+ALT+DEL' setting should be configured correctly.

oval:org.secpod.oval:def:18813
Auditing of 'Detailed Tracking: Process Creation' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8785
The 'MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted (3 recommended, 5 is default)' setting should be configured correctly.

oval:org.secpod.oval:def:8787
The 'User Account Control: Behavior of the elevation prompt for standard users' setting should be configured correctly.

oval:org.secpod.oval:def:8780
The 'System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing' setting should be configured correctly.

oval:org.secpod.oval:def:18806
The Windows Firewall should be enabled or disabled as appropriate for the Domain Profile.

oval:org.secpod.oval:def:8782
The 'User Account Control: Detect application installations and prompt for elevation' setting should be configured correctly.

oval:org.secpod.oval:def:18809
Auditing of 'Object Access: SAM' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8795
The 'Microsoft network client: Send unencrypted password to third-party SMB servers' setting should be configured correctly.

oval:org.secpod.oval:def:8797
The 'Network Security: Configure encryption types allowed for Kerberos' setting should be configured correctly.

oval:org.secpod.oval:def:18817
Auditing of 'Policy Change: Filtering Platform Policy Change' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8792
The 'Network access: Sharing and security model for local accounts' setting should be configured correctly.

oval:org.secpod.oval:def:8793
The 'Network security: Do not store LAN Manager hash value on next password change' setting should be configured correctly.

oval:org.secpod.oval:def:18819
Auditing of 'Policy Change: MPSSVC Rule Level Policy Change' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8790
The 'Network security: Allow Local System to use computer identity for NTLM' setting should be configured correctly.

oval:org.secpod.oval:def:8766
RPC Endpoint Mapper Client Authentication

oval:org.secpod.oval:def:8768
The 'Deny access to this computer from the network' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8769
The 'MSS: (AutoAdminLogon) Enable Automatic Logon (not recommended)' setting should be configured correctly.

oval:org.secpod.oval:def:8762
The 'User Account Control: Run all administrators in Admin Approval Mode' setting should be configured correctly.

oval:org.secpod.oval:def:8763
The "Prevent the computer from joining a homegroup" machine setting should be configured correctly.

oval:org.secpod.oval:def:18878
The 'Manage auditing and security log' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:8760
The 'Interactive logon: Message text for users attempting to log on' setting should be configured correctly.

oval:org.secpod.oval:def:8777
The 'Domain member: Disable machine account password changes' setting should be configured correctly.

oval:org.secpod.oval:def:18886
The 'MSS: (Hidden) Hide Computer From the Browse List (not recommended except for highly secure environments)' setting should be configured correctly.

oval:org.secpod.oval:def:18885
Auditing of 'Account Management: Application Group Management' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8779
The 'Interactive logon: Do not display last user name' setting should be configured correctly.

oval:org.secpod.oval:def:8773
The 'Minimum password age' setting should be configured correctly.

oval:org.secpod.oval:def:8774
The 'MSS: (PerformRouterDiscovery) Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS)' setting should be configured correctly.

oval:org.secpod.oval:def:18883
The 'Audit: Shut down system immediately if unable to log security audits' setting should be configured correctly.

oval:org.secpod.oval:def:18882
Auditing of 'Account Management: Security Group Management' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18880
Auditing of 'Logon-Logoff: Special Logon' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8772
The 'Deny log on locally' user right should be assigned to the appropriate accounts.

oval:org.secpod.oval:def:7897
The number of passwords remembered

oval:org.secpod.oval:def:8744
The 'Network access: Do not allow anonymous enumeration of SAM accounts and shares' setting should be configured correctly.

oval:org.secpod.oval:def:18853
The 'Retain old events' machine setting should be configured correctly for the security log.

oval:org.secpod.oval:def:7898
The "account lockout duration" policy should meet minimum requirements.

oval:org.secpod.oval:def:7899
The maximum number of failed attempts that can occur before the account is locked out This security setting determines the number of failed logon attempts that causes a user account to be locked out. A locked-out account cannot be used until it is reset by an administrator or until the lockout dura ...

oval:org.secpod.oval:def:8746
The 'User Account Control: Only elevate UIAccess applications that are installed in secure locations' setting should be configured correctly.

oval:org.secpod.oval:def:8747
The 'Interactive logon: Smart card removal behavior' setting should be configured correctly.

oval:org.secpod.oval:def:18858
Auditing of 'Object Access: Filtering Platform Packet Drop' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18855
Auditing of 'DS Access: Directory Service Access' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:8748
The 'Network security: Force logoff when logon hours expire' setting should be configured correctly.

oval:org.secpod.oval:def:18848
The 'Network Security: Restrict NTLM: Add remote server exceptions for NTLM authentication' setting should be configured correctly.

oval:org.secpod.oval:def:8755
The 'Devices: Allowed to format and eject removable media' setting should be configured correctly.

oval:org.secpod.oval:def:8756
Recovery Console: Allow Floppy Copy and Access to All Drives and All Folders

oval:org.secpod.oval:def:8757
The 'MSS: (NoNameReleaseOnDemand) Allow the computer to ignore NetBIOS name release requests except from WINS servers' setting should be configured correctly.

oval:org.secpod.oval:def:8751
The 'Network security: LDAP client signing requirements' setting should be configured correctly.

oval:org.secpod.oval:def:18868
Auditing of 'Logon-Logoff: IPsec Quick Mode' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18860
Auditing of 'Policy Change: Other Policy Change Events' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18923
Auditing of 'Logon-Logoff: Network Policy Server' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18917
Auditing of 'Logon-Logoff: Account Lockout' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18902
Auditing of 'DS Access: Directory Service Changes' events on success should be enabled or disabled as appropriate.

oval:org.secpod.oval:def:18901
The 'Windows Firewall: Domain: Apply local firewall rules' setting should be configured correctly.

oval:org.secpod.oval:def:7900
The Minimum password length setting should be configured correctly.

oval:org.secpod.oval:def:7901
The 'Password must meet complexity requirements' policy should be set correctly.

oval:org.secpod.oval:def:7902
Maximum password age is the profile defined number of days

oval:org.secpod.oval:def:39358
The host is missing an important security update according to Microsoft security bulletin, MS17-017. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted application. Successful exploitation could allow attackers to escalate ...

oval:org.secpod.oval:def:39306
An elevation of privilege vulnerability exists when Microsoft IIS Server fails to properly sanitize a specially crafted request. An attacker who successfully exploited this vulnerability could then perform cross-site scripting attacks on affected systems and run script in the security context of the ...

oval:org.secpod.oval:def:39307
An elevation of privilege vulnerability exists when Microsoft IIS Server fails to properly sanitize a specially crafted request. An attacker who successfully exploited this vulnerability could then perform cross-site scripting attacks on affected systems and run script in the security context of the ...

oval:org.secpod.oval:def:39325
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as ...

oval:org.secpod.oval:def:39328
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as ...

oval:org.secpod.oval:def:39420
An elevation of privilege exists in Windows when a DCOM object in Helppane.exe configured to run as the interactive user fails to properly authenticate the client. An attacker who successfully exploited the vulnerability could run arbitrary code in another user's session.

oval:org.secpod.oval:def:39359
An elevation of privilege vulnerability exists when the Windows Transaction Manager improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context.In a local attack scenario, an attacker could exploit this vulnerability by r ...

oval:org.secpod.oval:def:39330
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as ...

oval:org.secpod.oval:def:39331
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as ...

oval:org.secpod.oval:def:39332
An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker on a guest operating system could run a specially crafted application that ...

oval:org.secpod.oval:def:39357
An elevation of privilege vulnerability exists when Windows fails to check the length of a buffer prior to copying memory to it. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system. To exploit the vulnerability, an attacker would first need ac ...

oval:org.secpod.oval:def:39840
A denial of service vulnerability exists in the way that Windows handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding. Note that the denial of service condition would not allow an attacker to execute code or to elevate use ...

oval:org.secpod.oval:def:40929
The host is missing security update for KB4021923

oval:org.secpod.oval:def:40900
An elevation of privilege vulnerability exists when tdx.sys fails to check the length of a buffer prior to copying memory to it.To exploit the vulnerability, in a local attack scenario, an attacker could run a specially crafted application to elevate the attacker's privilege level. An attacker who s ...

oval:org.secpod.oval:def:40901
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially craf ...

oval:org.secpod.oval:def:40908
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to fu ...

oval:org.secpod.oval:def:40909
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to fu ...

oval:org.secpod.oval:def:40910
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to fu ...

oval:org.secpod.oval:def:40911
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to fu ...

oval:org.secpod.oval:def:40883
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to fu ...

oval:org.secpod.oval:def:40932
The host is missing security update for KB4022013

oval:org.secpod.oval:def:40913
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to fu ...

oval:org.secpod.oval:def:40914
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to fu ...

oval:org.secpod.oval:def:40912
An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to fu ...

CVE    29
CVE-2011-4434
CVE-2011-5046
CVE-2012-0159
CVE-2012-0174
...
CCE    1130
CCE-10571-8
CCE-10936-3
CCE-10799-5
CCE-10024-8
...
*CPE
cpe:/o:microsoft:windows_server_2008:r2
XCCDF    6
xccdf_org.secpod_benchmark_NIST_800_53_r4_Windows_2008_R2
xccdf_scaprepo.com_benchmark_microsoft-windows-server-2008-r2
xccdf_com.secpod_benchmark_microsoft-windows-server-2008-r2
xccdf_org.secpod_benchmark_general_Windows_Server_2008_R2
...

© 2013 SecPod Technologies