CCE-37065-0| Platform: cpe:/o:microsoft:windows_server_2012::r2 | Date: (C)2015-10-08 (M)2023-07-04 |
Do not throttle additional data
This policy setting determines whether Windows Error Reporting (WER) sends additional, second-level report data even if a CAB file containing data about the same event types has already been uploaded to the server.
If you enable this policy setting, WER does not throttle data; that is, WER uploads additional CAB files that can contain data about the same event types as an earlier uploaded report.
If you disable or do not configure this policy setting, WER throttles data by default; that is, WER does not upload more than one CAB file for a report that contains data about the same event types.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsWindows Error Reporting!Do not throttle additional data
(2) REG: HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsWindows Error Reporting!BypassDataThrottling
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 2.2 | Attack Vector: NETWORK |
| Exploit Score: 0.7 | Attack Complexity: HIGH |
| Impact Score: 1.4 | Privileges Required: HIGH |
| Severity: LOW | User Interaction: NONE |
| Vector: AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L | Scope: UNCHANGED |
| | Confidentiality: NONE |
| | Integrity: NONE |
| | Availability: LOW |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:27785 |
