DISA STIG Office 2010 InfoPath v1r11

Audit Details

Name: DISA STIG Office 2010 InfoPath v1r11

Updated: 4/12/2023

Authority: DISA STIG

Plugin: Windows

Revision: 1.4

Estimated Item Count: 25

File Details

Filename: DISA_STIG_Microsoft_InfoPath_2010_v1r11.audit

Size: 44.5 kB

MD5: 53f88023f7f53e9ace3c965967a81c6f
SHA256: 270b7399f5386e83e0eb10836a4833006ae2c9974efe757f3deb60d62da7b1d6

Audit Items

DescriptionCategories
DISA_STIG_Microsoft_InfoPath_2010_v1r11.audit for Microsoft InfoPath 2010, from DISA STIG Microsoft InfoPath 2010 v1r11
DTOO127 - InfoPath - Application add-ins must be signed by Trusted Publisher.

CONFIGURATION MANAGEMENT

DTOO128 - InfoPath - Data Execution Prevention must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO131 - InfoPath - Trust Bar Notifications for unsigned application add-ins must be blocked.

CONFIGURATION MANAGEMENT

DTOO133 - InfoPath - All automatic loading from Trusted Locations must be disabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO156 - InfoPath - Offline Mode capability to cache queries for offline mode must be configured.

CONFIGURATION MANAGEMENT

DTOO157 - InfoPath - Redirection behavior for upgraded web sites by SharePoint must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO158 - InfoPath - Disabling the opening of solutions from the Internet Security Zone must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO159 - InfoPath - Disabling of Fully Trusted Solutions access to computers must be configured.

CONFIGURATION MANAGEMENT

DTOO160 - InfoPath - Unsafe file types must be prevented from being attached to InfoPath forms.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO164 - InfoPath - Beaconing UI shown for opened forms must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO165 - InfoPath - Beaconing of UI forms with ActiveX controls must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO167 - InfoPath - Opening behavior for EMail forms containing code or scripts must be controlled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO168 - InfoPath - Disabling sending form templates with the email forms must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO169 - InfoPath - Dynamic caching of InfoPath eMail forms must be disabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO170 - InfoPath - InfoPath 2003 forms as email forms in InfoPath 2010 must be disallowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO171 - InfoPath - Disabling email forms running in Restricted Security Level must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO172 - InfoPath - Disabling email forms from the Internet Security Zone must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO173 - InfoPath - Disabling of email forms from the Full Trust Security Zone must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO176 - InfoPath - Email with InfoPath forms must be configured to show UI to recipients.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO294 - InfoPath - InfoPath must be enforced to not use e-mail forms from the Intranet security zone.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO295 - InfoPath - InfoPath e-mail forms in Outlook must be disallowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO296 - InfoPath - Disabling opening forms with managed code from the Internet security zone must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO297 - InfoPath - A form that is digitally signed must be displayed with a warning.

CONFIGURATION MANAGEMENT

DTOO309 - InfoPath - The InfoPath APTCA Assembly Allowable List must be enforced.

CONFIGURATION MANAGEMENT