Disabling heap termination on corruption can allow certain legacy plug-in applications to function without terminating Explorer immediately, although Explorer may still terminate unexpectedly later. Vulnerability: Enabling or not configuring this setting can allow certain types of malware to affect Explorer stability and effectively perform a denial of service (DoS) attack. Counter Measure: Disable this setting depending on your organization's requirements. Potential Impact: Disabling this policy setting will ensure that Data Execution Prevention blocks certain types of malware from exploiting Explorer. Fix: (1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsFile ExplorerTurn off heap termination on corruption (2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsExplorer!NoHeapTerminationOnCorruption

[enable/disable]

(1) GPO: Computer Configuration\Administrative Templates\Windows Components\File Explorer\Turn off heap termination on corruption (2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Explorer!NoHeapTerminationOnCorruption