Vulnerability Details

Microsoft Windows: Interactive logon: Do not require CTRL+ALT+DEL

Published: 2018-06-01 13:28:39

CVSS Base Vector:
AV:L/AC:H/Au:S/C:N/I:N/A:N

Report Confidence:
97

Summary:
This test checks the setting for policy 'Interactive logon: Do not require CTRL+ALT+DEL' on Windows hosts (at least Windows 7). The setting determines whether pressing CTRL+ALT+DEL is required before a user can log on. If the policy setting is enabled, a user is not required to press CTRL+ALT+DEL to log on. Not having to press CTRL+ALT+DEL can leave users susceptible to attacks that attempt to intercept the users passwords. Requiring CTRL+ALT+DEL before users log on ensures that users are communicating by means of a trusted path when entering their passwords. If disabled, any user is required to press CTRL+ALT+DEL before logging on to the Windows operating system (unless they are using a smart card for logon).

Severity
Detection Plugin
CVSS Score
0.0

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.