CCE-42188-3Platform: cpe:/o:microsoft:windows_10 | Date: (C)2016-09-23 (M)2023-07-04 |
Disable: 'MSS: (NtfsDisable8dot3NameCreation) Enable the computer to stop generating 8.3 style filenames' for NtfsDisable8dot3NameCreation
MSS: (NtfsDisable8dot3NameCreation) Enable the computer to stop generating 8.3 style filenames
Counter Measure:
Configure the MSS: (NtfsDisable8dot3NameCreation) Enable the computer to stop generating 8.3 style filenames (recommended) entry to a value of Enabled.
The possible values for this registry entry are:
- 1 or 0. The default configuration is 0 (disabled).
In the SCE UI, these options appear as:
- Enabled
- Disabled
- Not Defined
Updated values are available for this registry entry in Windows 7 and Windows Server 2008 R2:
The possible values for this registry entry are:
- 0, 1, 2, 3. The default configuration is 2.
In the SCM UI, these options appear as:
- Enable 8dot3 name creation on all volumes
- Disable 8dot3 name creation on all volumes
- Set 8dot3 name creation per volume using FSUtil (Windows 7 or later)
- Disable 8dot 3 name creation on all volumes except system volume (Windows 7 or later)
Potential Impact:
The 16-bit applications in your organization will not be able to access files that are not named with the 8.3 format. Some 32-bit applications also rely on the presence of short names, because short names tend not to contain embedded spaces and therefore do not require quotation marks when used in command lines. The installation routines for some programs may fail; those that are designed to run on multiple CPU architectures are likely to be 16-bit applications. The installation of Exchange 2000 SP2 will fail if this entry is enabled. The installation of service packs for SQL 2000 will fail if this entry is enabled and the path for the system variable %temp% includes a space; a simple workaround for this problem is to redefine the variable to a path without spaces (for example, C: emp).
Note: If you apply this entry to a server that already has files with auto-generated 8.3 file names, it does not remove them. To remove existing 8.3 file names, you will need to copy those files off the server, delete the files from the original location, and then copy the files back to their original locations."
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesMSS (Legacy)MSS: (NtfsDisable8dot3NameCreation) Enable the computer to stop generating 8.3 style filenames
(2) REG: HKEY_LOCAL_MACHINESystemCurrentControlSetControlFileSystemNtfsDisable8dot3NameCreation
CCSS Severity: | CCSS Metrics: |
CCSS Score : 5.6 | Attack Vector: NETWORK |
Exploit Score: 2.2 | Attack Complexity: HIGH |
Impact Score: 3.4 | Privileges Required: NONE |
Severity: MEDIUM | User Interaction: NONE |
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L | Scope: UNCHANGED |
| Confidentiality: LOW |
| Integrity: LOW |
| Availability: LOW |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:35074 |