This policy setting allows a user to adjust the maximum amount of memory that is available to a process. The ability to adjust memory quotas is useful for system tuning, but it can be abused. In the wrong hands, it could be used to launch a denial of service (DoS) attack. When configuring a user right in the SCM enter a comma delimited list of accounts. Accounts can be either local or located in Active Directory, they can be groups, users, or computers. This policy setting allows a user to adjust the maximum amount of memory that is available to a process. Fix: (1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment!Adjust memory quotas for a process (2) WMI: root\rsop\computer#RSOP_UserPrivilegeRight#AccountList#UserRight='SeIncreaseQuotaPrivilege' and precedence=1