WN11-00-000395 - Windows 11 must not have portproxy enabled or in use.

Information

Having portproxy enabled or configured in Windows 10 could allow a man-in-the-middle attack.

Solution

Contact the Administrator to run 'netsh interface portproxy delete' with elevation. Remove any enabled portproxies that may be configured.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_11_V2R2_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7a., CAT|II, CCI|CCI-000381, Rule-ID|SV-257592r991589_rule, STIG-ID|WN11-00-000395, Vuln-ID|V-257592

Plugin: Windows

Control ID: 085c21b47ac36b5898014d4eea9f1ca53c7f3e690f7715ea206de814d4b203df