Inbound connection in port 593 (TCP) is not blocked in Windows firewall
Description
MS Security Bulletin [MS03-026] indicates a critical Remote Procedure Call (RPC) vulnerability that can be exploited via ports 593. To prevent this, disable the port 593 at the firewall and restrict RPC over unsecure networks.
Severity
Moderate
Category
Windows Firewall
Resolution
Follow the below steps to resolve the misconfiguration.
Step 1: Open the Control Panel
Step 2: Click on Windows Firewall/ Windows Defender firewall
Step 3: Navigate to advanced settings.
Step 4:Right click on inbound rules and click on new rule.
Step 6:Select port and press next
Step 7:Specify the port 593 under specific local ports, select TCP and press next.
Step 8:click on block the connection and click next.
Step 9:Select Domain, Private and Public and click next.
Step 10:Give a name and description and click finish.
Does remediation require reboot?
No
Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.
