An error occurred:

Check: WINER-000004

Windows Vista STIG: WINER-000004 (in versions v6 r42 through v6 r41)

Title

The system must be configured to allow a local or DOD-wide collector to request additional error reporting diagnostic data to be sent. (Cat II impact)

Discussion

Sending additional error reporting data provides valuable system diagnostic and vulnerability information that would otherwise not be generated nor collected. This setting controls whether additional data in support of error reports can be sent to a local or DOD-wide reporting site.

Check Content

If the following registry value does not exist or is not configured as specified, this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Registry Path: \SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting\ Value Name: DontSendAdditionalData Type: REG_DWORD Value: 0

Fix Text

Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Windows Error Reporting -> "Do not send additional data" to "Disabled".

Additional Identifiers

Rule ID: SV-16656r2_rule

Vulnerability ID: V-15717

Group Title: WINER-000004

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001312

The information system generates error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
SI-11

Error Handling