This script is Copyright (C) 2000-2015 Tenable Network Security, Inc.
Local users can gain administrator privileges.
The following keys contain the name of the program that shall be
started when the computer starts. The users who have the right to
modify them can easily make the admin run a Trojan program that will
give them admin privileges.
Use regedt32 and set the permissions of this key to :
- Admin group : Full Control
- System : Full Control
- Everyone : Read
Make sure that 'Power Users' do not have any special privilege for
Risk factor :
High / CVSS Base Score : 7.2