Title

The Task Scheduler service must be disabled. (Cat I impact)

Discussion

Unnecessary services increase the attack surface of a system. Some services may be run under the local System account. Compromising a service could allow an intruder to obtain system permissions and open the system to a variety of attacks.

Check Content

Select “Start”. Right-click the “My Computer” icon on the Start menu or the desktop. Select “Manage” from the drop-down menu. Expand the “Services and Applications” object in the Tree window. Select the “Services” object. If the Task Scheduler service is not disabled, and the site has not documented required tasks, this is a finding. Documentable Explanation: If the Task Scheduler service is required it will be documented with the IAO to include the required tasks. Scheduled tasks will be regularly reviewed for unapproved tasks.

Fix Text

Configure the system to disable Task Scheduler.

Additional Identifiers

Rule ID: SV-39606r1_rule

Vulnerability ID: V-30037

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.