| VID |
27086 |
| Severity |
40 |
| Port |
135 |
| Protocol |
TCP |
| Class |
WMI |
| Detailed Description |
The SAM (Security Account Manager) file manages passwords for user and group accounts and provides authentication through the Local Security Authority (LSA). Therefore, password database information may be exposed due to password attack attempt on SAM file. Therefore, access to SAM file should be restricted except Administrator and System group.
* Platforms Affected:
Microsoft Windows Any version |
| Recommendation |
1.% systemroot% \ system32 \ config \ SAM> Properties> Security
2. Remove the Administrator, System group, and other user and group permissions |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
