An executable file can't be started from a trusted share or mapped drive
Last Modified: 2024-01-11 05:29:29 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
An executable file can't be started from a trusted share or mapped drive
Technical Articles ID:
KB91502
Last Modified: 2024-01-11 05:29:29 Etc/GMT Environment
Application and Change Control (ACC) 8.x
Problem
An executable ( Cause
When a network drive is mapped to a particular drive in the system, newer versions of ACC (MPT-integrated versions) receive callbacks in the form of For example, ACC receives a call-back from a mapped network share ( Example execution denied event in NOTE: The call-back that ACC receives depends on the context in which it has been accessed. If the Workaround
You can add a rule in the form of the mapped drive sadmin trusted -i -u \\<IP>\<complete mapped location> Doing so makes sure that a path is added for both contexts. NOTE: The issue is present in all MPT-integrated versions of ACC. Affected ProductsLanguages:This article is available in the following languages: |
|