WNDF-AV-000024 – Windows Defender AV must be configured to scan archive files.

Details

This policy setting allows you to configure scans for malicious software and unwanted software in archive files such as .ZIP or .CAB files. If you enable or do not configure this setting archive files will be scanned. If you disable this setting archive files will not be scanned.

Solution

Set the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Windows Defender Antivirus -> Scan -> ‘Scan archive files’ to ‘Enabled ‘ or ‘Not Configured’.

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Defender_Antivirus_V2R3_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Information Integrity.This control applies to the following type of system Windows.

References

800-53|SI-3c.1.
CAT|II
CCI|CCI-001242
Rule-ID|SV-213448r569189_rule
STIG-ID|WNDF-AV-000024
STIG-Legacy|SV-89913
STIG-Legacy|V-75233
Vuln-ID|V-213448

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles