| VID |
28364 |
| Severity |
30 |
| Port |
135 |
| Protocol |
TCP |
| Class |
WMI |
| Detailed Description |
Remote system's LAN Manager authentication level is weak for security. This policy setting is used for determine network logons Challenge / Response authentication protocol. LAN Manager is responsible for the certification over the network operations such as file and printer sharing. The more secure NTLMv2 for authentication should be used.
* Platforms Affected:
Microsoft Windows Any version |
| Recommendation |
1. Run> SECPOL.MSC > Local Policies> Security Options
2. 'Network security: LAN Manager authentication level' setting the value empty or setting to except 'Send LM & NTLM responses' |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
