CCE-14854-4Platform: win7 | Date: (C)2012-05-18 (M)2022-10-10 |
The 'Core Networking - Dynamic Host Configuration Protocol (DHCPV6-In)' Windows Firewall rule should be configured correctly.
Parameter:
(1) Enabled\Not Enabled
(2) Allow the connection\Allow the connection if it is secure(Allow the connection if it is authenticated and integrity-protected\Require the connection to be encrypted\Allow the computers to dynamically negotiate encryption\Allow the connection to use null encapsulation\Override block rules)\Block the connection
(3) List of authorized computers
(4) List of computer exceptions
(5) List of local IP address that limit the scope
(6) List of remote IP address that limit the scope
(7) Profiles: Domain\Private\Public
(8) All interface types\These interface types (Local area network/Remote access\Wireless)
(9) Block edge traversal\Allow edge traversal\Defer to user\Defer to application
(10) List of authorized users
(11) List of user exceptions
Technical Mechanism:
(1) GPO: Computer Configuration\Windows Settings\Security Settings\Windows Firewall with Advanced Security\Windows Firewall with Advanced Security\Inbound Rules\Core Networking - Dynamic Host Configuration Protocol (DHCPV6-In)
(2) Registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\FirewallRules\CoreNet-DHCPV6-In
CCSS Severity: | CCSS Metrics: |
CCSS Score : | Attack Vector: |
Exploit Score: | Attack Complexity: |
Impact Score: | Privileges Required: |
Severity: | User Interaction: |
Vector: | Scope: |
| Confidentiality: |
| Integrity: |
| Availability: |
| |
References: Resource Id | Reference |
---|
Microsoft Online Documentation | domain_profile_Core_Networking_DHCPV6_In |
USGCB Beta 2010-08-31 XCCDF (USGCB-Windows-7-x86_xccdf.xml) | oval:gov.nist.USGCB.win7firewall:def:20941 |
USGCB XCCDF (USGCB-Windows-7-xccdf) | domain_profile_Core_Networking_DHCPV6_In |
USGCB OVAL (USGCB-Windows-7-oval) | oval:gov.nist.USGCB.win7firewall:def:20941 |
SCAP Repo OVAL Definition | oval:gov.nist.USGCB.win7firewall:def:20941 |