API tools faq
paste
Advertisement
Guest User

CVE-2023-32019 Registry Items GPO

a guest
Jun 15th, 2023
554
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 9.23 KB | Cybersecurity | 0 0
raw download clone embed print report
  1. <?xml version="1.0" encoding="utf-8"?>
  2. <RegistrySettings clsid="{A3CCFC41-DFDB-43a5-8D26-0FE8B954DA51}">
  3. <Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="Windows 11 22H2">
  4. <Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="4237806220" status="4237806220" image="12" changed="2023-06-15 10:44:51" uid="{50F7D30C-15D0-4E20-8CA4-92DE0D0A41AE}" bypassErrors="1">
  5. <Properties action="U" displayDecimal="1" default="0" hive="HKEY_LOCAL_MACHINE" key="SYSTEM\CurrentControlSet\Policies\Microsoft\FeatureManagement\Overrides" name="4237806220" type="REG_DWORD" value="00000001"/>
  6. <Filters>
  7. <FilterWmi bool="AND" not="0" query="select * from Win32_OperatingSystem where Caption like &quot;%Windows 11%&quot; and Version like &quot;10.%&quot; and ProductType=&quot;1&quot;" nameSpace="Root\cimv2" property="" variableName=""/>
  8. <FilterRegistry bool="AND" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="DisplayVersion" valueType="REG_SZ" valueData="22H2" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  9. </Filters>
  10. </Registry>
  11. </Collection>
  12. <Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="Windows 11 21H2">
  13. <Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="4204251788" status="4204251788" image="12" changed="2023-06-15 10:44:24" uid="{448E1B3B-B8FF-4F2E-8AA9-5201CCBDEB61}" bypassErrors="1">
  14. <Properties action="U" displayDecimal="1" default="0" hive="HKEY_LOCAL_MACHINE" key="SYSTEM\CurrentControlSet\Policies\Microsoft\FeatureManagement\Overrides" name="4204251788" type="REG_DWORD" value="00000001"/>
  15. <Filters>
  16. <FilterWmi bool="AND" not="0" query="select * from Win32_OperatingSystem where Caption like &quot;%Windows 11%&quot; and Version like &quot;10.%&quot; and ProductType=&quot;1&quot;" nameSpace="Root\cimv2" property="" variableName=""/>
  17. <FilterRegistry bool="AND" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="DisplayVersion" valueType="REG_SZ" valueData="21H2" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  18. </Filters>
  19. </Registry>
  20. </Collection>
  21. <Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="Windows 10 20H2 21H2 22H2">
  22. <Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="4103588492" status="4103588492" image="12" changed="2023-06-15 09:07:33" uid="{52DD9D1B-3A4D-46B6-9EFB-EFF39B664158}" bypassErrors="1">
  23. <Properties action="U" displayDecimal="1" default="0" hive="HKEY_LOCAL_MACHINE" key="SYSTEM\CurrentControlSet\Policies\Microsoft\FeatureManagement\Overrides" name="4103588492" type="REG_DWORD" value="00000001"/>
  24. <Filters>
  25. <FilterOs bool="AND" not="0" class="NT" version="WINTHRESHOLD" type="NE" edition="NE" sp="NE"/>
  26. <FilterCollection bool="AND" not="0">
  27. <FilterRegistry bool="AND" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="DisplayVersion" valueType="REG_SZ" valueData="20H2" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  28. <FilterRegistry bool="OR" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="DisplayVersion" valueType="REG_SZ" valueData="21H2" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  29. <FilterRegistry bool="OR" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="DisplayVersion" valueType="REG_SZ" valueData="22H2" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  30. </FilterCollection>
  31. </Filters>
  32. </Registry>
  33. </Collection>
  34. <Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="Windows 10 1809">
  35. <Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="LazyRetryOnCommitFailure" status="LazyRetryOnCommitFailure" image="12" changed="2023-06-15 09:17:22" uid="{CED4926B-2E49-49F6-B9E3-320982210826}" bypassErrors="1">
  36. <Properties action="U" displayDecimal="1" default="0" hive="HKEY_LOCAL_MACHINE" key="SYSTEM\CurrentControlSet\Control\Session Manager\Configuration Manager" name="LazyRetryOnCommitFailure" type="REG_DWORD" value="00000000"/>
  37. <Filters>
  38. <FilterOs bool="AND" not="0" class="NT" version="WINTHRESHOLD" type="NE" edition="NE" sp="NE"/>
  39. <FilterRegistry bool="AND" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="ReleaseId" valueType="REG_SZ" valueData="1809" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  40. </Filters>
  41. </Registry>
  42. </Collection>
  43. <Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="Windows 10 1607">
  44. <Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="LazyRetryOnCommitFailure" status="LazyRetryOnCommitFailure" image="12" changed="2023-06-15 09:17:04" uid="{D0EFAB2A-89B5-4753-8016-2052F449840C}" bypassErrors="1">
  45. <Properties action="U" displayDecimal="1" default="0" hive="HKEY_LOCAL_MACHINE" key="SYSTEM\CurrentControlSet\Control\Session Manager\Configuration Manager" name="LazyRetryOnCommitFailure" type="REG_DWORD" value="00000000"/>
  46. <Filters>
  47. <FilterOs bool="AND" not="0" class="NT" version="WINTHRESHOLD" type="NE" edition="NE" sp="NE"/>
  48. <FilterRegistry bool="AND" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="ReleaseId" valueType="REG_SZ" valueData="1607" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  49. </Filters>
  50. </Registry>
  51. </Collection>
  52. <Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="Windows Server 2016">
  53. <Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="LazyRetryOnCommitFailure" status="LazyRetryOnCommitFailure" image="12" changed="2023-06-15 10:17:34" uid="{A68CE537-0EB1-4A1B-8382-CC70FC3397B3}" bypassErrors="1">
  54. <Properties action="U" displayDecimal="1" default="0" hive="HKEY_LOCAL_MACHINE" key="SYSTEM\CurrentControlSet\Control\Session Manager\Configuration Manager" name="LazyRetryOnCommitFailure" type="REG_DWORD" value="00000000"/>
  55. <Filters>
  56. <FilterRegistry bool="AND" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="ProductName" valueType="REG_SZ" valueData="Windows Server 2016" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  57. <FilterRegistry bool="AND" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="ReleaseId" valueType="REG_SZ" valueData="1607" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  58. </Filters>
  59. </Registry>
  60. </Collection>
  61. <Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="Windows Server 2019">
  62. <Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="LazyRetryOnCommitFailure" status="LazyRetryOnCommitFailure" image="12" changed="2023-06-15 11:07:59" uid="{489757F4-A6E0-4CBE-81B0-B230E3E8BFF3}" bypassErrors="1">
  63. <Properties action="U" displayDecimal="1" default="0" hive="HKEY_LOCAL_MACHINE" key="SYSTEM\CurrentControlSet\Control\Session Manager\Configuration Manager" name="LazyRetryOnCommitFailure" type="REG_DWORD" value="00000000"/>
  64. <Filters>
  65. <FilterRegistry bool="AND" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="ProductName" valueType="REG_SZ" valueData="Windows Server 2019" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  66. <FilterRegistry bool="AND" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="ReleaseId" valueType="REG_SZ" valueData="1809" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  67. </Filters>
  68. </Registry>
  69. </Collection>
  70. <Collection clsid="{53B533F5-224C-47e3-B01B-CA3B3F3FF4BF}" name="Windows Server 2022">
  71. <Registry clsid="{9CD4B2F4-923D-47f5-A062-E897DD1DAD50}" name="4137142924" status="4137142924" image="12" changed="2023-06-15 10:15:10" uid="{5B3F02E4-1787-44DD-8EB6-D01C0F60E8A4}" bypassErrors="1">
  72. <Properties action="U" displayDecimal="1" default="0" hive="HKEY_LOCAL_MACHINE" key="SYSTEM\CurrentControlSet\Policies\Microsoft\FeatureManagement\Overrides" name="4137142924" type="REG_DWORD" value="00000001"/>
  73. <Filters>
  74. <FilterRegistry bool="AND" not="0" type="MATCHVALUE" subtype="SUBSTRING" hive="HKEY_LOCAL_MACHINE" key="SOFTWARE\Microsoft\Windows NT\CurrentVersion" valueName="ProductName" valueType="REG_SZ" valueData="Windows Server 2022" min="0.0.0.0" max="0.0.0.0" gte="1" lte="0"/>
  75. </Filters>
  76. </Registry>
  77. </Collection>
  78. </RegistrySettings>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!