STIGQter STIGQter: STIG Summary: McAfee MOVE AV Agentless 4.5 Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 11 Dec 2017:

The McAfee MOVE AV SVM Settings policy must be configured to scan for Multipurpose Internet Mail Extensions (MIME)-encoded files.

DISA Rule

SV-93207r1_rule

Vulnerability Number

V-78501

Group Title

MV45-SVM-200006

Rule Version

MV45-SVM-200006

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Access the McAfee ePO console.

Select Menu >> Policy >> Policy Catalog and then select "MOVE AntiVirus 4.5.0" from the Product list.

From the Category list, select "SVM Settings".

Select each configured SVM Settings policy.

Click "Show Advanced".

Under "Scanning Options", select the "Enabled scanning for MIME-encoded files" check box.

Click "Save".

Check Contents

Access the McAfee ePO console.

Select Menu >> Policy >> Policy Catalog and then select "MOVE AntiVirus 4.5.0" from the Product list.

From the Category list, select "SVM Settings".

Select each configured SVM Settings policy.

Click "Show Advanced".

Under "Scanning Options", verify "Enabled scanning for MIME-encoded files" check box is selected.

If "Enabled scanning for MIME-encoded files" is not selected, this is a finding.

Vulnerability Number

V-78501

Documentable

False

Rule Version

MV45-SVM-200006

Severity Override Guidance

Access the McAfee ePO console.

Select Menu >> Policy >> Policy Catalog and then select "MOVE AntiVirus 4.5.0" from the Product list.

From the Category list, select "SVM Settings".

Select each configured SVM Settings policy.

Click "Show Advanced".

Under "Scanning Options", verify "Enabled scanning for MIME-encoded files" check box is selected.

If "Enabled scanning for MIME-encoded files" is not selected, this is a finding.

Check Content Reference

M

Target Key

3227

Comments