| VID |
27085 |
| Severity |
30 |
| Port |
135 |
| Protocol |
TCP |
| Class |
WMI |
| Detailed Description |
You should prevent to access system log by remote anonymous user, because anonymous user can access major "system log" file and "application log" file, so there are potential threats like forgery, delete, leak of security audit information.
* Platforms Affected:
Microsoft Windows Any version |
| Recommendation |
1. Explorer> Log Directory> Properties> Securities
2. Remove Everyone |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
