Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-19318 | WIR1410-03 | SV-21235r3_rule | ECSC-1 | Medium |
Description |
---|
Insecure Bluetooth configuration on the PC could make it vulnerable to compromise via a Bluetooth attack. |
STIG | Date |
---|---|
BlackBerry Enterprise Server (version 5.x), Part 3 Security Technical Implementation Guide | 2013-09-30 |
Check Text ( C-23360r3_chk ) |
---|
Detailed Policy Requirements: *****For this check, set IT Policy rule “Maximum Number of PC Pairings" (BlackBerry Smart Card Reader policy group) to “0” or “1” depending on if SCR connections to PCs are authorized. Check Procedures: This is a BES IT Policy check. Recommend all checks related to BES IT policies be reviewed using the procedure in Check WIR1100-01 (V0003545). *****Verify IT Policy rule “Maximum Number of PC Pairings" (BlackBerry Smart Card Reader policy group) is set as required. Note: The correct setting can also be verified on the handheld: See “Reader Setting – Bluetooth Range” in Table 5, BlackBerry STIG Configuration Tables. Verifying the correct setting on the BES is the preferred procedure. Mark as a finding if not set as required. |
Fix Text (F-23386r4_fix) |
---|
Configure the IT Policy rule as specified in the "Checks" block. |