STIGQter: STIG Summary: McAfee VSEL 1.9/2.0 Managed Client Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 24 Apr 2020:

The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x must scan all media used for system maintenance prior to use.

DISA Rule

SV-77553r1_rule

Vulnerability Number

V-63063

Group Title

SRG-APP-000073

Rule Version

DTAVSEL-200

Severity

CAT II

CCI(s)

• CCI-000870 - The organization checks media containing diagnostic and test programs for malicious code before the media are used in the information system.

Weight

10

Fix Recommendation

Create procedures, or add to existing system administration procedures, which require the scanning of all media used for system maintenance before media is used.

Check Contents

Consult with the System Administrator of the Linux system being reviewed.

Verify procedures are documented which require the manual scanning of all media used for system maintenance before media is used.

If a procedure is not documented requiring the manual scanning of all media used for system maintenance before media is used, this is a finding.

Vulnerability Number

V-63063

Documentable

False

Rule Version

DTAVSEL-200

Severity Override Guidance

Consult with the System Administrator of the Linux system being reviewed.

Verify procedures are documented which require the manual scanning of all media used for system maintenance before media is used.

If a procedure is not documented requiring the manual scanning of all media used for system maintenance before media is used, this is a finding.

Check Content Reference

M

Target Key

2939

Comments