CCE-36114-7Platform: cpe:/o:microsoft:windows_server_2012::r2 | Date: (C)2015-10-08 (M)2023-07-04 |
Allow the use of remote paths in file shortcut icons
This policy setting determines whether remote paths can be used for file shortcut (.lnk file) icons.
If you enable this policy setting, file shortcut icons are allowed to be obtained from remote paths.
If you disable or do not configure this policy setting, file shortcut icons that use remote paths are prevented from being displayed.
Note: Allowing the use of remote paths in file shortcut icons can expose users? computers to security risks.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsFile Explorer!Allow the use of remote paths in file shortcut icons
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsExplorer!EnableShellShortcutIconRemotePath
CCSS Severity: | CCSS Metrics: |
CCSS Score : 9.8 | Attack Vector: NETWORK |
Exploit Score: 3.9 | Attack Complexity: LOW |
Impact Score: 5.9 | Privileges Required: NONE |
Severity: CRITICAL | User Interaction: NONE |
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: HIGH |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:27307 |