Detections
Analytics
DTOO128 - Access - Data Execution Prevention must be enforced.
Information
Data Execution Prevention (DEP) is a set of hardware and software technologies performing additional checks on memory to help prevent malicious code from running on a system. The primary benefit of DEP is to help prevent code execution from data pages. Enabling this setting, turns off Data Execution Prevention. As a result, malicious code takes advantage of code injection or buffer overflow vulnerabilities possibly exploiting the computer.Solution
Set the policy value for User Configuration -> Administrative Templates -> Microsoft Access 2010 -> Application Settings -> Security -> Trust Center 'Turn off Data Execution Prevention' to 'Disabled'.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Access_2010_V1R11_STIG.zip
Item Details
Audit Name: DISA STIG Office 2010 Access v1r11
Category: SYSTEM AND COMMUNICATIONS PROTECTION
References: 800-53|SC-18(4), CAT|II, CCI|CCI-001170, Rule-ID|SV-33854r1_rule, STIG-ID|DTOO128, Vuln-ID|V-26590
Plugin: Windows
Control ID: ce3a4b55d5008c711c1e75c6e811f62daba1d536ebcdd92e55540842766cdb55