[Forgot Password]
Login  Register Subscribe

23631

 
 

126941

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-45876-0

Platform: win2016Date: (C)2017-08-03   (M)2017-10-16



"Turn off Data Execution Prevention for Explorer" Disabling data execution prevention can allow certain legacy plug-in applications to function without terminating Explorer. Vulnerability: Data Execution Prevention is an important security feature supported by Explorer that helps to limit the impact of certain types of malware. Counter Measure: We recommend that you disable this policy setting unless you have to support legacy business applications that do not support it. Potential Impact: Enabling this policy setting may allow certain legacy plug-in applications to function. Disabling this policy setting will ensure that Data Execution Prevention blocks certain types of malware from exploiting Explorer.


Parameter: NoDataExecutionPrevention


Technical Mechanism: Fix: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\File Explorer (2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Explorer!NoDataExecutionPrevention

References:

Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:40329


OVAL    1
oval:org.secpod.oval:def:40329
XCCDF    2
xccdf_org.secpod_benchmark_general_Windows_Server_2016
xccdf_org.secpod_benchmark_PCI_3_2_Windows_Server_2016

© 2013 SecPod Technologies