[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-41614-9

Platform: cpe:/o:microsoft:windows_10Date: (C)2016-09-23   (M)2023-07-04



Specify the 'MSS: (KeepAliveTime) How often keep-alive packets are sent' in milliseconds for KeepAliveTime MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds Counter Measure: Configure the MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds (300,000 is recommended) entry to a value of 300000 or 5 minutes. The possible values for this registry entry are: ? 1 through 0xFFFFFFFF. The default configuration is 7,200,000 (two hours). In the SCE UI, the following list of options appears: ? 150000 or 2.5 minutes ? 300000 or 5 minutes (recommended) ? 600000 or 10 minutes ? 1200000 or 20 minutes ? 2400000 or 40 minutes ? 3600000 or 1 hour ? 7200000 or 2 hours (default value) ? Not Defined Potential Impact: Keep-alive packets are not sent by default by Windows. However, some applications may configure the TCP stack flag that requests keep-alive packets. For such configurations, you can lower this value from the default setting of two hours to five minutes to disconnect inactive sessions more quickly.


Parameter:

[keepalivetime]


Technical Mechanism:

(1) GPO: Computer ConfigurationAdministrative TemplatesMSS (Legacy)MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds (2) REG: HKEY_LOCAL_MACHINESystemCurrentControlSetServicesTcpipParametersKeepAliveTime

CCSS Severity:CCSS Metrics:
CCSS Score : 7.4Attack Vector: NETWORK
Exploit Score: 2.2Attack Complexity: HIGH
Impact Score: 5.2Privileges Required: NONE
Severity: HIGHUser Interaction: NONE
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:HScope: UNCHANGED
 Confidentiality: HIGH
 Integrity: NONE
 Availability: HIGH
  

References:
Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:35000


OVAL    1
oval:org.secpod.oval:def:35000
XCCDF    3
xccdf_org.secpod_benchmark_NIST_800_53_r4_Windows_10
xccdf_org.secpod_benchmark_PCI_3_2_Windows_10
xccdf_org.secpod_benchmark_general_Windows_10

© SecPod Technologies