[Forgot Password]
Login  Register Subscribe

24436

 
 

131815

 
 

116471

 
 

909

 
 

91176

 
 

140

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-45876-0

Platform: win2016Date: (C)2017-08-03   (M)2018-11-15



"Turn off Data Execution Prevention for Explorer" Disabling data execution prevention can allow certain legacy plug-in applications to function without terminating Explorer. Vulnerability: Data Execution Prevention is an important security feature supported by Explorer that helps to limit the impact of certain types of malware. Counter Measure: We recommend that you disable this policy setting unless you have to support legacy business applications that do not support it. Potential Impact: Enabling this policy setting may allow certain legacy plug-in applications to function. Disabling this policy setting will ensure that Data Execution Prevention blocks certain types of malware from exploiting Explorer.


Parameter: NoDataExecutionPrevention


Technical Mechanism: Fix: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\File Explorer (2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Explorer!NoDataExecutionPrevention

References:

Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:40329


OVAL    1
oval:org.secpod.oval:def:40329
XCCDF    5
xccdf_org.secpod_benchmark_general_Windows_Server_2016
xccdf_org.secpod_benchmark_NIST_800_53_r4_Windows_Server_2016
xccdf_org.secpod_benchmark_HIPAA_45CFR_164_Windows_Server_2016
xccdf_org.secpod_benchmark_SecPod_Windows_Server_2016
...

© SecPod Technologies