CCE-99879-9Platform: cpe:/o:microsoft:windows_server_2012:- | Date: (C)2023-12-27 (M)2023-12-27 |
Determines whether users that are not Administrators can install print drivers on this computer.
By default, users that are not Administrators can not install print drivers on this computer.
If you enable this setting or do not configure it, the system will limit installation of print drivers to Adminstrators of this computer.
If you disable this setting, the system will not limit installation of print drivers to this computer.
Fix:
(1) GPO: Computer Configuration\Administrative Templates\Printers\Limits print driver installation to Administrators
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT\Printers\PointAndPrint!RestrictDriverInstallationToAdministrators
Parameter:
[Enabled/Disabled]
Technical Mechanism:
(1) GPO: Computer Configuration\\Administrative Templates\\Printers\\Limits print driver installation to Administrators
(2) REG: HKEY_LOCAL_MACHINE\\Software\\Policies\\Microsoft\\Windows NT\\Printers\\PointAndPrint!RestrictDriverInstallationToAdministrators
CCSS Severity: | CCSS Metrics: |
CCSS Score : 7.8 | Attack Vector: LOCAL |
Exploit Score: 1.8 | Attack Complexity: LOW |
Impact Score: 5.9 | Privileges Required: LOW |
Severity: HIGH | User Interaction: NONE |
Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: HIGH |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:96114 |