This script is Copyright (C) 2002-2015 Tenable Network Security, Inc.
It is possible to obtain the host SID for the remote host.
By emulating the call to LsaQueryInformationPolicy(), it was possible
to obtain the host SID (Security Identifier).
The host SID can then be used to get the list of local users.
See also :
You can prevent anonymous lookups of the host SID by setting the
'RestrictAnonymous' registry setting to an appropriate value.
Refer to the 'See also' section for guidance.
Risk factor :