The network element must be configured to disable functionality that provides the capability for automatic execution of code on mobile devices without user direction.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000073-FW-NA | SRG-NET-000073-FW-NA | SRG-NET-000073-FW-NA_rule | Low |
| Description |
|---|
| Auto execution vulnerabilities can result in malicious programs being executed that can be used to cause a denial of service on the device and hence disrupt network services. Examples of information system functionality that provide the capability for automatic execution of code are Auto Run and AutoPlay. Disabling applications on mobile devices is outside the scope of the firewall. |
| STIG | Date |
|---|---|
| Firewall Security Requirements Guide | 2012-12-10 |
Details
| Check Text ( C-SRG-NET-000073-FW-NA_chk ) |
|---|
| This requirement is NA for firewall. No fix required. |
| Fix Text (F-SRG-NET-000073-FW-NA_fix) |
|---|
| This requirement is NA for firewall. No fix required. |