Detections
Analytics

DISA STIG Office 2010 Publisher v1r5

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG Office 2010 Publisher v1r5

Updated: 10/27/2021

Authority: DISA STIG

Plugin: Windows

Revision: 1.19

Estimated Item Count: 18

File Details

Filename: DISA_STIG_MS_Office_Publisher_2010.audit

Size: 17.7 kB

Audit Items

DescriptionCategories
DISA_STIG_MS_Office_Publisher_2010.audit for MS Publisher, from DISA Office 2010 STIG, v1r5 10.26.2012
DTOO104 - Disabling of user name and password syntax from being used in URLs must be enforced.

CONFIGURATION MANAGEMENT

DTOO111 - Enabling IE Bind to Object functionality must be present.

CONFIGURATION MANAGEMENT

DTOO117 - Saved from URL mark to assure Internet zone processing must be enforced.

CONFIGURATION MANAGEMENT

DTOO123 - Navigation to URL's embedded in Office products must be blocked.

CONFIGURATION MANAGEMENT

DTOO124 - Scripted Window Security must be enforced.

CONFIGURATION MANAGEMENT

DTOO126 - Add-on Management functionality must be allowed.

CONFIGURATION MANAGEMENT

DTOO127 - Application add-ins must be signed by Trusted Publisher.

SYSTEM AND INFORMATION INTEGRITY

DTOO128 - Data Execution Prevention must be enforced.

CONFIGURATION MANAGEMENT

DTOO129 - Links that invoke instances of IE from within an Office product must be blocked.

CONFIGURATION MANAGEMENT

DTOO131 - Trust Bar Notifications for unsigned application add-ins must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO132 - File Downloads must be configured for proper restrictions.

CONFIGURATION MANAGEMENT

DTOO209 - Protection from zone elevation must be enforced.

CONFIGURATION MANAGEMENT

DTOO211 - ActiveX Installs must be configured for proper restriction.

CONFIGURATION MANAGEMENT

DTOO304 - Warning Bar settings for VBA macros must be configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO305 - Disable UI extending from documents and templates must be disallowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO322 - Fatally corrupt files must be blocked from opening.

CONFIGURATION MANAGEMENT

DTOO323 - The Publisher Automation Security Level must be configured for high security.

SYSTEM AND COMMUNICATIONS PROTECTION