DISA STIG Office 2010 Project v1r10

Audit Details

Name: DISA STIG Office 2010 Project v1r10

Updated: 8/19/2024

Authority: DISA STIG

Plugin: Windows

Revision: 1.0

Estimated Item Count: 14

File Details

Filename: DISA_STIG_Microsoft_Project_2010_v1r10.audit

Size: 26.8 kB

MD5: 0972891d8187137dacfe14f82122970b
SHA256: 97c943c15c669bd27ff3bedca7d0c4a866335ebb260ac426818b344938195778

Audit Items

DescriptionCategories
DISA_STIG_Microsoft_Project_2010_v1r10.audit from DISA Microsoft Project 2010 v1r10 STIG
DTOO104 - Project - Disabling of user name and password syntax from being used in URLs must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO111 - Project - Enabling IE Bind to Object functionality must be present.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO117 - Project - Saved from URL mark to assure Internet zone processing must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO123 - Project - Navigation to URL's embedded in Office products must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO124 - Project - Scripted Window Security must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO126 - Project - Add-on Management functionality must be allowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO128 - Project - Data Execution Prevention must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO129 - Project - Links that invoke instances of IE from within an Office product must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO132 - Project - File Downloads must be configured for proper restrictions.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO209 - Project - Protection from zone elevation must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO211 - Project - ActiveX Installs must be configured for proper restriction.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO346 - Project - Untrusted intranet zone access to Project servers must not be allowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO999 - Project - The version of Microsoft Project running on the system must be a supported version.

SYSTEM AND INFORMATION INTEGRITY