44676 – SMB Insecurely Configured Service-
At least one insecurely configured Windows service on the remote host is affected by a privilege escalation vulnerability.
At least one insecurely configured Windows service was detected on the remote host. Unprivileged users can modify the properties of these affected services, allowing an unprivileged, local attacker to execute arbitrary code or commands as SYSTEM.
Nessus checked if any of the following groups have permissions to modify executable files that are started by Windows services :
– Domain Users
– Authenticated Users
See Also https://docs.microsoft.com/en-us/windows/desktop/Services/service-security-and-access-rights
Ensure the groups listed above do not have ChangeConf, WDac, or WOwn permissions. Refer to the Microsoft documentation for more information.
CVSS v3.0 Base Score
CVSS v2.0 Base Score
Published: 2010/02/22, Modified: 2022/02/02
The following service has insecure group permissions:
spacedeskService (spacedeskService) :
– Everyone: DC, WD, WO