DISA STIG Office 2010 InfoPath v1r11

Audit Details

Name: DISA STIG Office 2010 InfoPath v1r11

Updated: 4/25/2022

Authority: DISA STIG

Plugin: Windows

Revision: 1.2

Estimated Item Count: 24

File Details

Filename: DISA_STIG_Microsoft_InfoPath_2010_v1r11.audit

Size: 41.7 kB

MD5: f5e0de15c77a9a3c62e37937ac16b7b9
SHA256: 3a69e5f4a994ef1f54fbe0b04b1b37238687258d8a91fc63ef0e0e2fef324038

Audit Items

DescriptionCategories
DTOO127 - InfoPath - Application add-ins must be signed by Trusted Publisher.

CONFIGURATION MANAGEMENT

DTOO128 - InfoPath - Data Execution Prevention must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO131 - InfoPath - Trust Bar Notifications for unsigned application add-ins must be blocked.

CONFIGURATION MANAGEMENT

DTOO133 - InfoPath - All automatic loading from Trusted Locations must be disabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO156 - InfoPath - Offline Mode capability to cache queries for offline mode must be configured.

CONFIGURATION MANAGEMENT

DTOO157 - InfoPath - Redirection behavior for upgraded web sites by SharePoint must be blocked.

SYSTEM AND INFORMATION INTEGRITY

DTOO158 - InfoPath - Disabling the opening of solutions from the Internet Security Zone must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO159 - InfoPath - Disabling of Fully Trusted Solutions access to computers must be configured.

CONFIGURATION MANAGEMENT

DTOO160 - InfoPath - Unsafe file types must be prevented from being attached to InfoPath forms.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO164 - InfoPath - Beaconing UI shown for opened forms must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO165 - InfoPath - Beaconing of UI forms with ActiveX controls must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO167 - InfoPath - Opening behavior for EMail forms containing code or scripts must be controlled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO168 - InfoPath - Disabling sending form templates with the email forms must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO169 - InfoPath - Dynamic caching of InfoPath eMail forms must be disabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO170 - InfoPath - InfoPath 2003 forms as email forms in InfoPath 2010 must be disallowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO171 - InfoPath - Disabling email forms running in Restricted Security Level must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO172 - InfoPath - Disabling email forms from the Internet Security Zone must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO173 - InfoPath - Disabling of email forms from the Full Trust Security Zone must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO176 - InfoPath - Email with InfoPath forms must be configured to show UI to recipients.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO294 - InfoPath - InfoPath must be enforced to not use e-mail forms from the Intranet security zone.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO295 - InfoPath - InfoPath e-mail forms in Outlook must be disallowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO296 - InfoPath - Disabling opening forms with managed code from the Internet security zone must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO297 - InfoPath - A form that is digitally signed must be displayed with a warning.

CONFIGURATION MANAGEMENT

DTOO309 - InfoPath - The InfoPath APTCA Assembly Allowable List must be enforced.

CONFIGURATION MANAGEMENT