PingSentry   |   Discord   |   System32   |   GitHub   |   Free tools

Windows OS: Explorer Data Execution Prevention must be enabled

c4e3c7a1-5b63-407a-8eb9-c6a4b52b9f93

Data Execution Prevention provides additional protection by performing checks on memory to help prevent malicious code from running. This setting will prevent Data Execution Prevention from being turned off for File Explorer.

Remediation

The default behavior is for data execution prevention to be turned on for File Explorer.

To fix this configure the policy value for
Computer Configuration
|_ Administrative Templates
|_ Windows Components
|_ File Explorer
|_ Turn off Data Execution Prevention for Explorer to "Not Configured" or "Disabled".

STIG: Server
2022: https://www.stigviewer.com/stig/microsoft_windows_server_2022/2024-06-14/finding/V-254362
2019: https://www.stigviewer.com/stig/microsoft_windows_server_2019/2024-06-14/finding/V-205830 / https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93563
2016: https://www.stigviewer.com/stig/microsoft_windows_server_2016/2024-02-21/finding/V-224941 / https://www.stigviewer.com/stig/windows_server_2016/2020-06-16/finding/V-73561

Desktop:
W11: https://www.stigviewer.com/stig/microsoft_windows_11/2024-06-10/finding/V-253396
W10: https://www.stigviewer.com/stig/microsoft_windows_10/2024-06-13/finding/V-220837 / https://www.stigviewer.com/stig/windows_10/2021-08-18/finding/V-220837

NIST 800-53: CM-7(2)
CSCv6: 8.4
NIST 800-171 Rev2: 3.4.7
NIST 800-171 Rev3 FPD: 3.4.8.b
NIST 800-171 Rev3: 03.04.08.b
CMMC v2.0 L2: CM.L2-3.4.7
CMMC V2.1 L2: CM.L2-3.4.7



Tags

stig-medium-desktop stig-medium-server desktop server domaincontroller cmmc2-l2-desktop cmmc2-l2-server nist800-171-desktop nist800-171-server nist800-53-desktop nist800-53-server cis-csc-desktop cis-csc-server compliance-desktop compliance-server