Microsoft Windows Guest Account Belongs to a Group

This script is Copyright (C) 2002-2017 Tenable Network Security, Inc.


Synopsis :

The 'Guest' account has excessive privileges.

Description :

Using the supplied credentials, Nessus was able to determine that the
'Guest' user belongs to groups other than 'Guests' (RID 546) or
'Domain Guests' (RID 514). Guest users should not have any additional
privileges.

Solution :

Edit the local or domain policy to restrict group membership for the
guest account.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Windows : User management

Nessus Plugin ID: 10907 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now