| Vuln ID | Severity | Asset | STIG | Title | Status | Doc Status | Assigned To | Actions |
|---|---|---|---|---|---|---|---|---|
| V-218814 | CAT II | SCHR-P3-DP-001 | Microsoft IIS 10.0 Server Security Techn... | IIS 10.0 web server system files must conform to m... | - | |||
Check TextOpen Explorer and navigate to the inetpub directory. Right-click "inetpub" and select "Properties". Click the "Security" tab. Verify the permissions for the following users; if the permissions are less restrictive, this is a finding. System: Full control Administrators: Full control TrustedInstaller: Full control ALL APPLICATION PACKAGES (built-in security group): Read and execute, This folder, subfolders and files ALL RESTRICTED APPLICATION PACKAGES (built-in security group): Read and execute, This folder, subfolders and files Users: Read and execute, list folder contents CREATOR OWNER: Full Control, Subfolders and files only Fix TextOpen Explorer and navigate to the inetpub directory. Right-click "inetpub" and select "Properties". Click the "Security" tab. Set the following permissions: System: Full control Administrators: Full control TrustedInstaller: Full control ALL APPLICATION PACKAGES (built-in security group): Read and execute, This folder, subfolders and files ALL RESTRICTED APPLICATION PACKAGES (built-in security group): Read and execute, This folder, subfolders and files Users: Read and execute, list folder contents CREATOR OWNER: Full Control, Subfolders and files only Finding DetailsEvaluate-STIG 1.2601.0 (Scan-IIS10_0_Server_Checks) found this to be NOT A FINDING on 03/05/2026 ResultHash: 3D17137C642E0082CB98AAEDAD92AC406296074C ~~~~~ Path: C:\inetpub OverallState: More restrictive than Expected Compliance: Compliant Unexpected rules... --------------------- State: MoreRestrictive Compliant: True Identity: APPLICATION PACKAGE AUTHORITY\ALL APPLICATION PACKAGES Type: N/A Basic: N/A Expected: ReadAndExecute Advanced: Expected: ExecuteFile, ListDirectory, ReadAttributes, ReadData, ReadExtendedAttributes, ReadPermissions, Traverse Inherited: N/A AppliesTo: N/A Summary: Missing Rule: An expected rule with rights 'ReadAndExecute' was not found on the system. State: MoreRestrictive Compliant: True Identity: APPLICATION PACKAGE AUTHORITY\ALL RESTRICTED APPLICATION PACKAGES Type: N/A Basic: N/A Expected: ReadAndExecute Advanced: Expected: ExecuteFile, ListDirectory, ReadAttributes, ReadData, ReadExtendedAttributes, ReadPermissions, Traverse Inherited: N/A AppliesTo: N/A Summary: Missing Rule: An expected rule with rights 'ReadAndExecute' was not found on the system. ---------------------
Source: SCHR-P3-DP-001_IIS10Server_V3R6_20260305-132942.cklb
Scan Date: 2026-03-12T15:38:14.420977
Technology Area: Web Review
|
||||||||