[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Prohibit non-administrators from applying vendor signed updates

ID: oval:gov.nist.usgcb.windowsseven:def:296Date: (C)2012-04-13   (M)2017-10-21
Class: COMPLIANCEFamily: windows




This setting controls the ability of non-administrators to install updates that have been digitally signed by the application vendor. Non-administrator updates provide a mechanism for the author of an application to create digitally signed updates that can be applied by non-privileged users. If you enable this policy setting, only administrators or users with administrative privileges can apply updates to Windows Installer based application. If you disable this policy setting, users without administrative privileges will be able to install non-administrator updates. Fix: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\Windows Installer\Prohibit non-administrators from applying vender signed updates (2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Installer!DisableLUAPatching

Platform:
Microsoft Windows 7
Reference:
CCE-9888-9
CPE    1
cpe:/o:microsoft:windows_7
CCE    1
CCE-9888-9
XCCDF    7
xccdf_org.secpod_benchmark_cip_std_ver3_Windows_7
xccdf_hippa_benchmark_Windows_7
xccdf_org.secpod_benchmark_ISO27001_Windows_7
xccdf_gov.nist_benchmark_USGCB-Windows-7
...

© 2013 SecPod Technologies