Home » Misconfiguration »

Autorun commands are allowed to run without user intervention

View the security misconfiguration catalog
  • Misconfiguration Name
  • Autorun commands are allowed to run without user intervention
  • Description
  • Autorun commands often launch the installation program without any user intervention. The setting "set the default behaviour for AutoRun" must be disabled, which in turn will prompt the user to decide on whether to run autorun command or not.
  • Severity
  • Critical
  • Category
  • OS Security Hardening
  • Resolution
  • Follow the below steps in GPO to resolve the misconfiguration. Configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> AutoPlay Policies >> "Set the default behavior for AutoRun" to "Enabled:Do not execute any autorun commands".
  • Does remediation require reboot?
  • No

Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.