CCE-26022-4Platform: cpe:/o:microsoft:windows_server_2012:- | Date: (C)2022-08-12 (M)2023-07-04 |
This policy setting changes the operational behavior of the Mapper I/O network protocol driver.
LLTDIO allows a computer to discover the topology of a network it's connected to. It also allows a computer to initiate Quality-of-Service requests such as bandwidth estimation and network health analysis.
If you enable this policy setting, additional options are available to fine-tune your selection. You may choose the Allow operation while in domain option to allow LLTDIO to operate on a network interface that's connected to a managed network. On the other hand, if a network interface is connected to an unmanaged network, you may choose the Allow operation while in public network and Prohibit operation while in private network options instead.
If you disable or do not configure this policy setting, the default behavior of LLTDIO will apply.
Parameter:
[enable/disable, enable/disable, enable/disable, enable/disable]
Technical Mechanism:
(1) GPO: Computer Configuration\Administrative Templates\Network\Link-Layer Topology Discovery!Turn on Mapper I/O (LLTDIO) driver
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\LLTD!EnableLLTDIO
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\LLTD:AllowLLTDIOOnDomain
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\LLTD:AllowLLTDIOOnPublicNet
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\LLTD:ProhibitLLTDIOOnPrivateNet
CCSS Severity: | CCSS Metrics: |
CCSS Score : 9.9 | Attack Vector: NETWORK |
Exploit Score: 3.1 | Attack Complexity: LOW |
Impact Score: 6.0 | Privileges Required: LOW |
Severity: CRITICAL | User Interaction: NONE |
Vector: AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H | Scope: CHANGED |
| Confidentiality: HIGH |
| Integrity: HIGH |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:82864 |