DISA STIG Office 2010 Word v1r11

Audit Details

Name: DISA STIG Office 2010 Word v1r11

Updated: 4/12/2023

Authority: DISA STIG

Plugin: Windows

Revision: 1.5

Estimated Item Count: 37

File Details

Filename: DISA_STIG_Microsoft_Word_2010_v1r11.audit

Size: 62.2 kB

MD5: 83b0f4c3feff17a704dadf88ae6b428d
SHA256: b2aa8a1ea607519f2ef1477ed58c08accbd1aaa2b9b29450feaa27b7ee1ae078

Audit Items

DescriptionCategories
DISA_STIG_Microsoft_Word_2010_v1r11.audit for Microsoft Word 2010, from DISA STIG Microsoft Word 2010 v1r11
DTOO104 - Word - Disabling of user name and password syntax from being used in URLs must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO110 - Word - Blocking as default file block opening behavior must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO111 - Word - Enabling IE Bind to Object functionality must be present.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO117 - Word - Saved from URL mark to assure Internet zone processing must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO119 - Word - Configuration for file validation must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO121 - Word - Files from the Internet zone must be opened in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO123 - Word - Navigation to URL's embedded in Office products must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO124 - Word - Scripted Window Security must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO126 - Word - Add-on Management functionality must be allowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO127 - Word - Application add-ins must be signed by Trusted Publisher.

CONFIGURATION MANAGEMENT

DTOO128 - Word - Data Execution Prevention must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO129 - Word - Links that invoke instances of IE from within an Office product must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO131 - Word - Trust Bar Notifications for unsigned application add-ins must be blocked.

CONFIGURATION MANAGEMENT

DTOO132 - Word - File Downloads must be configured for proper restrictions.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO133 - Word - All automatic loading from Trusted Locations must be disabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO134 - Word - Disallowance of Trusted Locations on the network must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO139 - Word - Save files default format must be configured.

CONFIGURATION MANAGEMENT

DTOO142 - Word - Force encrypted macros to be scanned in open XML documents must be determined and configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO146 - Word - Trust access for VBA must be disallowed.

CONFIGURATION MANAGEMENT

DTOO209 - Word - Protection from zone elevation must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO210 - Word - Pre-release versions of file formats new to Office Products must be blocked.

CONFIGURATION MANAGEMENT

DTOO211 - Word - ActiveX Installs must be configured for proper restriction.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO288 - Word - Files in unsafe locations must be opened in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO292 - Word - Document behavior if file validation fails must be set - DisableEditFromPV

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO292 - Word - Document behavior if file validation fails must be set - OpenInProtectedView

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO293 - Word - Attachments opened from Outlook must be in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO302 - Word - The automatically update links feature must be configured as off.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO303 - Word - A warning before printing that the document contains tracking changes must be provided.

CONFIGURATION MANAGEMENT

DTOO304 - Word - Warning Bar settings for VBA macros must be configured.

CONFIGURATION MANAGEMENT

DTOO328 - Word - Online translation dictionaries must be in use.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO333 - Word - Word 2 and earlier binary documents and templates must be blocked for open/save.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO334 - Word - Word 2000 binary documents and templates must be configured to edit in protected view.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO336 - Word - Word 6.0 binary documents and templates must be configured for block open/save actions.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO337 - Word - Word 95 binary documents and templates must be configured to edit in protected view.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO338 - Word - Word 97 binary documents and templates must be configured to edit in protected view.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO339 - Word - Word XP binary documents and templates must be configured to edit in protected view.

SYSTEM AND COMMUNICATIONS PROTECTION