CCE-37855-4| Platform: cpe:/o:microsoft:windows_server_2012::r2 | Date: (C)2015-10-08 (M)2023-07-04 |
Audit Policy: Account Management: Other Account Management Events
This subcategory reports other account management events. Events for this subcategory include:
? 4782: The password hash an account was accessed.
? 4793: The Password Policy Checking API was called.
Refer to the Microsoft Knowledgebase article ?Description of security events in Windows Vista and in Windows Server 2008? for the most recent information about this setting: http://support.microsoft.com/default.aspx/kb/947226.
Parameter:
[success/failure/success_failure/none]
Technical Mechanism:
(1) GPO: Computer ConfigurationWindows SettingsSecurity SettingsAdvanced Audit Policy ConfigurationAudit PoliciesAccount Management!Audit Policy: Account Management: Other Account Management Events
(2) WMI: ###
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 6.7 | Attack Vector: LOCAL |
| Exploit Score: 0.8 | Attack Complexity: LOW |
| Impact Score: 5.9 | Privileges Required: HIGH |
| Severity: MEDIUM | User Interaction: NONE |
| Vector: AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| | Confidentiality: HIGH |
| | Integrity: HIGH |
| | Availability: HIGH |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:22904 |
