cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Add double quotation marks around the path to executable for all service - proactively

AB21805
Bronze Contributor

‎Dec 06 2022 07:34 AM

‎Dec 06 2022 07:34 AM

Add double quotation marks around the path to executable for all service - proactively

Hi all,

 

Is there a way to check / fix any paths to exes which dont have quotations? - via intune

 

 

5,272 Views
0 Likes
6 Replies
Reply
6 Replies
Rudy_Ooms_MVP

‎Dec 06 2022 11:34 PM

‎Dec 06 2022 11:34 PM

Re: Add double quotation marks around the path to executable for all service - proactively

Could you give an example so we have an idea about what you are trying to accomplish?
0 Likes
Reply
AB21805

‎Dec 07 2022 12:04 AM

‎Dec 07 2022 12:04 AM

Re: Add double quotation marks around the path to executable for all service - proactively

Hi @Rudy_Ooms_MVP 

 

I want to implement this security recommendation: 

 

Screenshot 2022-12-07 at 08.02.58.png

Was wondering if it can be done by intune

0 Likes
Reply
rahuljindal-MVP

‎Dec 07 2022 12:58 AM

‎Dec 07 2022 12:58 AM

Re: Add double quotation marks around the path to executable for all service - proactively

Am I right in saying that this is a security hardening requirement similar to that of CIS controls? If yes, then there is nothing available in Intune to configure this natively. You will probably need to use PS script. Either directly or through proactive remediation.
1 Like
Reply
AB21805

‎Dec 07 2022 01:17 AM

‎Dec 07 2022 01:17 AM

Re: Add double quotation marks around the path to executable for all service - proactively

Hi,

Would you know what sort of script I need to run for this?
0 Likes
Reply
rahuljindal-MVP

‎Dec 07 2022 02:32 PM

‎Dec 07 2022 02:32 PM

Re: Add double quotation marks around the path to executable for all service - proactively

No, sorry. But I will like to think that the script will add quotes against each service path in the registry. Here is an example - https://www.techiessphere.com/2017/06/how-to-fix-unquoted-service-path-vulnerability.html
0 Likes
Reply
AB21805

‎Dec 08 2022 12:19 AM

‎Dec 08 2022 12:19 AM

Re: Add double quotation marks around the path to executable for all service - proactively

Hi @rahuljindal-MVP @Rudy_Ooms_MVP 

 

I would like to do this all remotely rather than on per machine to then manually add quotations to the missing ones, maybe as a proactive remediation if this is possible so that its all automatically found and fixed ? 

 

 

0 Likes
Reply