Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The system must not use removable media as the boot loader.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36664 | WIN00-000012 | SV-54991r2_rule | High |
| Description |
|---|
| Malicious users with removable boot media can gain access to a system configured to use removable media as the boot loader. |
| STIG | Date |
|---|---|
| Windows 2008 Member Server Security Technical Implementation Guide | 2016-05-12 |
Details
| Check Text ( C-48729r2_chk ) |
|---|
| Verify whether the system BIOS or controller allows removable media for the boot loader. If it does, this is a finding. If access is restricted by way of hypervisor configuration settings on virtual systems, this would not be a finding. |
| Fix Text (F-47874r2_fix) |
|---|
| Configure the system BIOS or controller to use a boot loader installed on fixed media. Restrictions may also be applied through hypervisor configuration settings for virtual machines. |