| VID |
27058 |
| Severity |
10 |
| Port |
135 |
| Protocol |
TCP |
| Class |
WMI |
| Detailed Description |
You should set user group and account for limiting to access because if you don't limit remote terminal group or account, some users may access to server and change or leak information remotely.
* Platforms Affected:
Microsoft Windows Any version |
| Recommendation |
[Windows Server 2003]
1. Control Panel> User Accounts> Creat account except administrator account
2. Control Panel> System> Remote Settings> Remote Tab> Check ¡°Allow connections only from computers running Remote Desktop with Network Level Authentication¡±> Designate remote users and confirm in ¡°Select Users¡±
[Windows Server 2008, 2012, 2016, 2019]
1. Start> Run> LUSRMGR.MSC> Group> Administrators> Properties
2. Change group after deleting unused account in Administrators group |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
