Microsoft Windows Guest Account Belongs to a Group

This script is Copyright (C) 2002-2013 Tenable Network Security, Inc.


Synopsis :

The 'Guest' account has excessive privileges.

Description :

Using the supplied credentials, it is possible to determine that the
'Guest' user belongs to groups other than 'Guests' (RID 546) or 'Domain
Guests' (RID 514). Guest users should not have any additional privileges.

Solution :

Edit the local or domain policy to restrict group membership for the
guest account.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Windows : User management

Nessus Plugin ID: 10907 ()

Bugtraq ID:

CVE ID: