Vulnerability Details

Microsoft Windows: Require strong session key

Published: 2018-06-01 13:03:15

CVSS Base Vector:
AV:L/AC:H/Au:S/C:N/I:N/A:N

Report Confidence:
97

Summary:
This test checks the setting for policy 'Domain member: Require strong session key' on Windows hosts (at least Windows 7). The policy setting determines whether a secure channel can be established with a domain controller that is not capable of encrypting secure channel traffic with a 128-bit session key. Enabling the setting prevents establishing a secure channel with any domain controller that cannot encrypt secure channel data with a strong key. Disabling the policy setting allows 64-bit session keys.

Severity
Detection Plugin
CVSS Score
0.0
Published
2018-06-01
Modified
2018-07-27
Category
Policy

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.