[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247621

 
 

909

 
 

194512

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-35556-0

Platform: win8.1Date: (C)2015-10-14   (M)2022-10-10



Restrict potentially unsafe HTML Help functions to specified folders With this policy, you can restrict certain HTML Help commands to function only in HTML Help (.chm) files within specified folders and their subfolders. Alternatively, you can disable these commands on the entire system. It is strongly recommended that only folders requiring administrative privileges be added to this policy. The 'Shortcut' command is used to add a link to a Help topic, and runs executables that are external to the Help file. The 'WinHelp' command is used to add a link to a Help topic, and runs a WinHLP32.exe Help (.hlp) file. When this policy is disabled, or not configured, these commands are fully functional for all Help files. When this policy is enabled, the commands will function only for .chm files in the specified folders and their subfolders. To restrict the commands to one or more folders, enable the policy and enter the desired folders in the text box on the settings tab of the Policy Properties dialog box. Use a semicolon to separate folders. For example, to restrict the commands to only .chm files in the %windir%\help folder and D:\somefolder, add the following string to the edit box: '%windir%\help;D:\somefolder'. To disallow the 'Shortcut' and 'WinHelp' commands on the entire local system, enable the policy and leave the text box on the settings tab of the Policy Properties dialog box blank. Note: An environment variable may be used, (for example, %windir%), so long as it is defined on the system. For example, %programfiles% is not defined on some early versions of Windows. Note: Only folders on the local computer can be specified in this policy. You cannot use this policy to enable the 'Shortcut' and 'WinHelp' commands for .chm files that are stored on mapped drives or accessed using UNC paths. For additional options, see the 'Restrict these programs from being launched from Help' policy.


Parameter:


Technical Mechanism:

(1) GPO: Computer Configuration\Administrative Templates\System!Restrict potentially unsafe HTML Help functions to specified folders (2) WMI: ###

CCSS Severity:CCSS Metrics:
CCSS Score : Attack Vector:
Exploit Score: Attack Complexity:
Impact Score: Privileges Required:
Severity: User Interaction:
Vector: Scope:
 Confidentiality:
 Integrity:
 Availability:
  

References:
Resource IdReference
XCCDF    1

© SecPod Technologies