| VID |
27051 |
| Severity |
30 |
| Port |
135 |
| Protocol |
TCP |
| Class |
WMI |
| Detailed Description |
'Allow logon locally' rights should necessarily grant that permission only to user accounts that require console access with the privileges that allow logging in to the system console. If that does not properly restrict the rights which an unauthorized user can execute malicious code to elevate their permissions.
¡Ø If you use the IIS service assigns the IUSR_ <ComputerName> account in the authorization.
* Platforms Affected:
Microsoft Windows Any version |
| Recommendation |
Except 'Administrators, IUSR_' limit other local logon Accounts and Groups.
1. Run> SECPOL.MSC> Local Policies> User Rights Assignment> Allow log on locally
2. Allow only 'Administrators, IUSR_' |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
