Selectively allow the evaluation of a symbolic linkID: oval:org.secpod.oval:def:27510 | Date: (C)2015-10-08 (M)2023-07-04 |
Class: COMPLIANCE | Family: windows |
Symbolic links can introduce vulnerabilities in certain applications. To mitigate this issue, you can selectively enable or disable the evaluation of these types of symbolic links:
Local Link to a Local Target
Local Link to a Remote Target
Remote Link to Remote Target
Remote Link to Local Target
For further information please refer to the Windows Help section
NOTE: If this policy is Disabled or Not Configured, local administrators may select the types of symbolic links to be evaluated.
Fix:
(1) GPO: Computer Configuration\Administrative Templates\System\Filesystem!Selectively allow the evaluation of a symbolic link
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Filesystems\NTFS!SymLinkState
Platform: |
Microsoft Windows Server 2012 R2 |