DISA STIG Office 2010 Publisher v1r11

Audit Details

Name: DISA STIG Office 2010 Publisher v1r11

Updated: 4/25/2022

Authority: DISA STIG

Plugin: Windows

Revision: 1.2

Estimated Item Count: 16

File Details

Filename: DISA_STIG_Microsoft_Publisher_2010_v1r11.audit

Size: 28.2 kB

MD5: 264f6f12471787353973efa072f4b158
SHA256: c8581ff402ad5c95b80d6f6c783f7be14e461dc296beb3a91133eb51f8698dde

Audit Items

DescriptionCategories
DTOO104 - Publisher - Disabling of user name and password syntax from being used in URLs must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO111 - Publisher - Enabling IE Bind to Object functionality must be present.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO117 - Publisher - Saved from URL mark to assure Internet zone processing must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO123 - Publisher - Navigation to URL's embedded in Office products must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO124 - Publisher - Scripted Window Security must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO126 - Publisher - Add-on Management functionality must be allowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO127 - Publisher - Application add-ins must be signed by Trusted Publisher.

CONFIGURATION MANAGEMENT

DTOO128 - Publisher - Data Execution Prevention must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO129 - Publisher - Links that invoke instances of IE from within an Office product must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO131 - Publisher - Trust Bar Notifications for unsigned application add-ins must be blocked.

CONFIGURATION MANAGEMENT

DTOO132 - Publisher - File Downloads must be configured for proper restrictions.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO209 - Publisher - Protection from zone elevation must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO211 - Publisher - ActiveX Installs must be configured for proper restriction.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO304 - Publisher - Warning Bar settings for VBA macros must be configured.

CONFIGURATION MANAGEMENT

DTOO322 - Publisher - Fatally corrupt files must be blocked from opening.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO323 - Publisher - The Publisher Automation Security Level must be configured for high security.

SYSTEM AND COMMUNICATIONS PROTECTION