| VID |
28347 |
| Severity |
40 |
| Port |
135 |
| Protocol |
TCP |
| Class |
WMI |
| Detailed Description |
Remote system allows shut down system immediately if unable to log security audits. This policy setting determines whether shut down the computer if it is unable to log security events. If this policy is enabled, can be used as a denial-of-service attack due to non-normal shutdown systems and data can be damaged.
* Platforms Affected:
Microsoft Windows Any version |
| Recommendation |
1. Run> SECPOL.MSC > Local Policies> Security Options
2. 'Audit: Shut down system immediately if unable to log security audits' setting the value to 'Disabled' |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
