| DISA_STIG_MS_Office_Excel_2010.audit for MS Excel, from DISA Office 2010 STIG, v1r5 10.26.2012 | |
| DTOO104 - Disabling of user name and password syntax from being used in URLs must be enforced. | CONFIGURATION MANAGEMENT |
| DTOO105 - Open/Save actions for Excel 4 macrosheets and add-in files must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO106 - Open/Save actions for Excel 4 workbooks must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO107 - Open/Save actions for Excel 4 worksheets must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO108 - Open/Save actions for Excel 95 workbooks must be in protected view. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO109 - Open/Save actions for Excel 95-97 workbooks and templates must be in protected view. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO110 - Blocking as default file block opening behavior must be enforced. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO111 - Enabling IE Bind to Object functionality must be present. | CONFIGURATION MANAGEMENT |
| DTOO112 - Open/Save actions for Dif and Sylk files must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO113 - Open/Save actions for Excel 2 macrosheets and add-in files must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO114 - Open/Save actions for Excel 2 worksheets must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO115 - Open/Save actions for Excel 3 macrosheets and add-in files must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO116 - Open/Save actions for Excel 3 worksheets must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO117 - Saved from URL mark to assure Internet zone processing must be enforced. | CONFIGURATION MANAGEMENT |
| DTOO118 - Corrupt workbook options must be disallowed. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO119 - Configuration for file validation must be enforced. | CONFIGURATION MANAGEMENT |
| DTOO120 - Open/Save actions for Web pages and Excel 2003 XML spreadsheets must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO121 - Files from the Internet zone must be opened in Protected View. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO122 - Open/Save actions for dBase III / IV files must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO123 - Navigation to URL's embedded in Office products must be blocked. | CONFIGURATION MANAGEMENT |
| DTOO124 - Scripted Window Security must be enforced. | CONFIGURATION MANAGEMENT |
| DTOO126 - Add-on Management functionality must be allowed. | CONFIGURATION MANAGEMENT |
| DTOO127 - Application add-ins must be signed by Trusted Publisher. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO128 - Data Execution Prevention must be enforced. | CONFIGURATION MANAGEMENT |
| DTOO129 - Links that invoke instances of IE from within an Office product must be blocked. | CONFIGURATION MANAGEMENT |
| DTOO131 - Trust Bar Notifications for unsigned application add-ins must be blocked. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO132 - File Downloads must be configured for proper restrictions. | CONFIGURATION MANAGEMENT |
| DTOO133 - All automatic loading from Trusted Locations must be disabled. | CONFIGURATION MANAGEMENT |
| DTOO134 - Disallowance of Trusted Locations on the network must be enforced. | CONFIGURATION MANAGEMENT |
| DTOO138 - Internet links and Network UNCs created as embedded hyperlinks must be prevented. | CONFIGURATION MANAGEMENT |
| DTOO139 - Save files default format must be configured. | CONFIGURATION MANAGEMENT |
| DTOO140 - Automatic republish to web pages must be disallowed. | ACCESS CONTROL |
| DTOO141 - AutoRepublish Warning Alert must be provided. | ACCESS CONTROL |
| DTOO142 - Force encrypted macros to be scanned in open XML documents must be determined and configured. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO143 - File types must be configured to provide mismatch warnings. | CONFIGURATION MANAGEMENT |
| DTOO145 - Macro storage must be in Personal macro workbooks. | CONFIGURATION MANAGEMENT |
| DTOO146 - Trust access for VBA must be disallowed. | CONFIGURATION MANAGEMENT |
| DTOO150 - Update of automatic links must be configured to prompt. | CONFIGURATION MANAGEMENT |
| DTOO152 - Load pictures from Web pages must be disallowed. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO209 - Protection from zone elevation must be enforced. | CONFIGURATION MANAGEMENT |
| DTOO210 - Pre-release versions of file formats new to Office Products must be blocked. | SYSTEM AND INFORMATION INTEGRITY |
| DTOO211 - ActiveX Installs must be configured for proper restriction. | CONFIGURATION MANAGEMENT |
| DTOO288 - Files in unsafe locations must be opened in Protected View. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO292 - Document behavior if file validation fails must be set. | |
| DTOO293 - Attachments opened from Outlook must be in Protected View. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO304 - Warning Bar settings for VBA macros must be configured. | SYSTEM AND COMMUNICATIONS PROTECTION |
| DTOO305 - Disable UI extending from documents and templates must be disallowed. | SYSTEM AND COMMUNICATIONS PROTECTION |
