CCE-99512-6| Platform: cpe:/o:microsoft:windows_server_2022:::x64 | Date: (C)2023-08-30 (M)2023-10-13 |
This policy setting determines whether Redirection Guard is enabled for the print spooler. Redirection Guard can prevent file redirections from being used within the print spooler.
The recommended state for this setting is: Enabled: Redirection Guard Enabled
Fix:
(1) GPO: Computer ConfigurationPoliciesAdministrative TemplatesPrintersConfigure Redirection Guard
(2) REG: HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindows NTPrinters:RedirectionguardPolicy
Parameter:
[Disabled/Enabled: Redirection Guard Disabled/Enabled: Redirection Guard Enabled/Enabled: Redirection Guard Audit Only]
Technical Mechanism:
(1) GPO: Computer Configuration\Policies\Administrative Templates\Printers\Configure Redirection Guard
(2) REG: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\Printers:RedirectionguardPolicy
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 5.5 | Attack Vector: LOCAL |
| Exploit Score: 1.8 | Attack Complexity: LOW |
| Impact Score: 3.6 | Privileges Required: LOW |
| Severity: MEDIUM | User Interaction: NONE |
| Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N | Scope: UNCHANGED |
| | Confidentiality: HIGH |
| | Integrity: NONE |
| | Availability: NONE |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:92684 |
