An error occurred:

Check: WINER-000017

Windows Vista STIG: WINER-000017 (in versions v6 r42 through v6 r41)

Title

The system must be configured to automatically consent to send all data requested by a local or DOD-wide error collection site. (Cat II impact)

Discussion

Configuring error reporting to send all requested data ensures all relevant data associated with the error report is captured for later analysis. This setting determines the default consent behavior of Windows Error Reporting.

Check Content

If the following registry value does not exist or is not configured as specified, this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Registry Path: \SOFTWARE\Policies\Microsoft\Windows\Windows Error Reporting\Consent\ Value Name: DefaultConsent Type: REG_DWORD Value: 0x00000004 (4)

Fix Text

Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Windows Error Reporting -> Consent -> "Configure Default consent" to "Enabled" with "Send all data" selected for "Consent level".

Additional Identifiers

Rule ID: SV-71963r1_rule

Vulnerability ID: V-57477

Group Title: WINER-000017

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001312

The information system generates error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
SI-11

Error Handling