Microsoft Windows SMB Registry : NT MTS Package Administration Registry Key Permission Weakness

This script is Copyright (C) 2003-2015 Tenable Network Security, Inc.

Synopsis :

A local user can gain additional privileges.

Description :

The registry key HKLM\SOFTWARE\Microsoft\Transaction Server\Packages
can be modified by users not in the admin group.

Write access to this key allows an unprivileged user to gain
additional privileges.

See also :

Solution :

Use regedt32 and set the permissions of this key to :

- admin group : Full Control
- system : Full Control
- everyone : Read

Risk factor :

Medium / CVSS Base Score : 4.6
CVSS Temporal Score : 4.2

Family: Windows

Nessus Plugin ID: 11867 ()

Bugtraq ID: 2065

CVE ID: CVE-2001-0047

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now