[Forgot Password]
Login  Register Subscribe

23631

 
 

121139

 
 

98218

 
 

909

 
 

79224

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Prohibit non-administrators from applying vendor signed updates

ID: oval:gov.nist.usgcb.windowsseven:def:296Date: (C)2012-04-13   (M)2017-10-26
Class: COMPLIANCEFamily: windows




This setting controls the ability of non-administrators to install updates that have been digitally signed by the application vendor. Non-administrator updates provide a mechanism for the author of an application to create digitally signed updates that can be applied by non-privileged users. If you enable this policy setting, only administrators or users with administrative privileges can apply updates to Windows Installer based application. If you disable this policy setting, users without administrative privileges will be able to install non-administrator updates. Fix: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\Windows Installer\Prohibit non-administrators from applying vender signed updates (2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Installer!DisableLUAPatching

Platform:
Microsoft Windows 7
Reference:
CCE-9888-9
CPE    1
cpe:/o:microsoft:windows_7
CCE    1
CCE-9888-9
XCCDF    7
xccdf_gov.nist_benchmark_USGCB-Windows-7
xccdf_nist_benchmark_Windows_7
xccdf_org.secpod_benchmark_NIST_800_53_r4_Windows_7
xccdf_org.secpod_benchmark_general_Windows_7
...

© 2013 SecPod Technologies