in

eEye Digital Security

The endpoint to vulnerability starts here.

 
eEye Digital Security » Blink Forums » Vulnerability Assessment » Verify Microsoft Windows Anonymous SID/Name Translation - Audit ID: 6798

Verify Microsoft Windows Anonymous SID/Name Translation - Audit ID: 6798

Last post 09-03-2009 12:17 PM by bpatten. 2 replies.
Page 1 of 1 (3 items)
Sort Posts: Previous Next

  • 08-21-2009 6:52 AM

    Verify Microsoft Windows Anonymous SID/Name Translation - Audit ID: 6798

    Reply Contact

    This Category I is popping on a scan running Windows Server 2003 Service Pack 2.  It doesn't appear that the Tested Value is working properly based on the summary report:

    Verify Microsoft Windows Anonymous SID/Name Translation
    Audit ID: 6798 Vul ID: N/A
    Risk Level: Information
    Sev Code: Category I
    PCI Level: 1 (Low)
    CVSS Score: N/A
    BugtraqID: N/A
    CVE: N/A
    IAV: N/A
    Context: N/A
    Result: Success
    Tested Value: WINDOWS.*((VISTA)|(XP)|(2003))
    Found Value: WINDOWS SERVER 2003, SERVICE PACK 2

     

  • 09-02-2009 1:18 AM In reply to

    Re: Verify Microsoft Windows Anonymous SID/Name Translation - Audit ID: 6798

    Reply Contact

    Brian,

         Do you know how to correct this?

  • 09-03-2009 12:17 PM In reply to

    • bpatten
    • Top 10 Contributor
    • Joined on 09-24-2007
    • Irvine, CA
    • Posts 125

    Re: Verify Microsoft Windows Anonymous SID/Name Translation - Audit ID: 6798

    Reply Contact

    The How to fix is stated as:

    "This is an informational check. Manually check to ensure that Anonymous SID/Name Translation is disabled within the local policy security settings."

    The audit is purely flagging because it needs to be manually verified. It will always flag for the applicable OSes if you use the audit during a scan. It is included in the All Audits group by default.

    Hope that helps.
Page 1 of 1 (3 items)
© 1995 - 2009 eEye Incorporated