| VID |
28366 |
| Severity |
30 |
| Port |
135 |
| Protocol |
TCP |
| Class |
WMI |
| Detailed Description |
Remote system's maximum machine account password age is weak for security. This policy setting, determine the period of domain member's password change time. By default, automatically change the domain password is set. The same password use for long time can be leak password.
* Platforms Affected:
Microsoft Windows Any version |
| Recommendation |
1. Run> SECPOL.MSC > Local Policies> Security Options
2. 'Domain member: Maximum machine account password age' setting the value '90' or below |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
