Detections
Analytics

ARDC-CN-000035 - Adobe Reader DC must prevent opening files other than PDF or FDF.

Information

Attachments represent a potential security risk because they can contain malicious content, open other dangerous files, or launch applications. Certainly file types such as .bin, .exe, .bat, and so on will be recognized as threats.

This feature prevents users from opening or launching file types other than PDF or FDF and disables the menu option.

Satisfies: SRG-APP-000112, SRG-APP-000206, SRG-APP-000207, SRG-APP-000209, SRG-APP-000210

Solution

Configure the following registry value:

Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: \Software\Policies\Adobe\Acrobat Reader\DC\FeatureLockDown

Value Name: iFileAttachmentPerms
Type: REG_DWORD
Value: 1

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Adobe_Acrobat_Reader_DC_Continuous_V2R1_STIG.zip

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-18(1), 800-53|SC-18(3), 800-53|SC-18(4), CAT|II, CCI|CCI-001166, CCI|CCI-001169, CCI|CCI-001170, CCI|CCI-001662, CCI|CCI-001695, Rule-ID|SV-213174r395811_rule, STIG-ID|ARDC-CN-000035, STIG-Legacy|SV-79421, STIG-Legacy|V-64931, Vuln-ID|V-213174

Plugin: Windows

Control ID: e37bead02106827960fd2b88b741b4e5c410dbedd28e6abd84455617f9139b7f