DISA STIG Microsoft PowerPoint 2013 v1r6

Audit Details

Name: DISA STIG Microsoft PowerPoint 2013 v1r6

Updated: 4/25/2022

Authority: DISA STIG

Plugin: Windows

Revision: 1.8

Estimated Item Count: 42

File Details

Filename: DISA_STIG_Microsoft_PowerPoint_2013_V1R6.audit

Size: 73.3 kB

MD5: 77f7ceb380fe74c5f707b8fb40c93873
SHA256: 226ceca34b7dd013968ab1a50fa507aca87f29b168c5357ca0ed512cc5909bb5

Audit Items

DescriptionCategories
DISA_STIG_Microsoft_PowerPoint_2013_V1R6.audit for Microsoft PowerPoint 2013, from DISA STIG Microsoft PowerPoint 2013 v1r6
DTOO104 - Disabling of user name and password syntax from being used in URLs must be enforced in PowerPoint.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO110 - Blocking as default file block opening behavior must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO111 - The Internet Explorer Bind to Object functionality must be enabled in PowerPoint.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO117 - The Saved from URL mark must be selected to enforce Internet zone processing in PowerPoint.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO119 - Configuration for file validation must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO121 - Files from the Internet zone must be opened in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO123 - Navigation to URLs embedded in Office products must be blocked in PowerPoint.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO124 - Scripted Window Security must be enforced in PowerPoint.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO126 - Add-on Management functionality must be allowed in PowerPoint.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO127 - Add-ins to Office applications must be signed by a Trusted Publisher.

CONFIGURATION MANAGEMENT

DTOO129 - Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO131 - Trust Bar Notifications for unsigned application add-ins must be blocked.

CONFIGURATION MANAGEMENT

DTOO132 - File Downloads must be configured for proper restrictions in PowerPoint.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO133 - All automatic loading from Trusted Locations must be disabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO134 - Disallowance of Trusted Locations on the network must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO139 - The Save commands default file format must be configured.

CONFIGURATION MANAGEMENT

DTOO142 - Enforce encrypted macros to be scanned in open XML documents must be determined and configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO146 - Trust access for VBA must be disallowed.

CONFIGURATION MANAGEMENT

DTOO209 - Protection from zone elevation must be enforced in PowerPoint.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO210 - The opening of pre-release versions of file formats new to PowerPoint 2013 through the Compatibility Pack must be blocked.

CONFIGURATION MANAGEMENT

DTOO211 - ActiveX Installs must be configured for proper restriction in PowerPoint.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO288 - Files in unsafe locations must be opened in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO289 - The ability to run programs from a PowerPoint presentation must be disallowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO290 - Hidden markup options must be visible.

CONFIGURATION MANAGEMENT

DTOO291 - Automatic download of linked images must be disallowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO292 - Document behavior if file validation fails must be set - DisableEditFromPV

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO292 - Document behavior if file validation fails must be set - OpenInProtectedView

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO293 - Attachments opened from Outlook must be in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO304 - Warning Bar settings for VBA macros must be configured.

CONFIGURATION MANAGEMENT

DTOO319 - The configuration for Slide Update with counterparts must be disallowed.

CONFIGURATION MANAGEMENT

DTOO501 - Disabling of user name and password syntax from being used in URLs must be enforced in PowerPoint Viewer.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO502 - The Internet Explorer Bind to Object functionality must be enabled in PowerPoint Viewer.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO503 - The Saved from URL mark must be selected to enforce Internet zone processing in PowerPoint Viewer.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO504 - Navigation to URLs embedded in Office products must be blocked in PowerPoint Viewer.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO505 - Scripted Window Security must be enforced in PowerPoint Viewer.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO506 - Add-on Management functionality must be allowed in PowerPoint Viewer.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO507 - File Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint Viewer.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO508 - File Downloads must be configured for proper restrictions in PowerPoint Viewer.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO509 - Protection from zone elevation must be enforced in PowerPoint Viewer.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO510 - ActiveX Installs must be configured for proper restriction in PowerPoint Viewer.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO600 - Macros must be blocked from running in Office 2013 files from the Internet.

SYSTEM AND COMMUNICATIONS PROTECTION