DISA STIG Microsoft Word 2013 v1r7

Audit Details

Name: DISA STIG Microsoft Word 2013 v1r7

Updated: 8/19/2024

Authority: DISA STIG

Plugin: Windows

Revision: 1.0

Estimated Item Count: 37

File Details

Filename: DISA_STIG_Microsoft_Word_2013_v1r7.audit

Size: 68.1 kB

MD5: bbe54a5a906ae3f65a0295a6bfa603ca
SHA256: 6fca07a6d8a41bd18f82b6b7775f4cc84776bd042790e933406602091ff8a913

Audit Items

DescriptionCategories
DISA_STIG_Microsoft_Word_2013_v1r7.audit from DISA Microsoft Word 2013 v1r7 STIG
DTOO104 - Disabling of user name and password syntax from being used in URLs must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO110 - Blocking as default file block opening behavior must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO111 - The Internet Explorer Bind to Object functionality must be enabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO117 - The Saved from URL mark must be selected to enforce Internet zone processing.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO119 - Configuration for file validation must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO121 - Files from the Internet zone must be opened in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO123 - Navigation to URLs embedded in Office products must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO124 - Scripted Window Security must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO126 - Add-on Management functionality must be allowed.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO127 - Add-ins to Office applications must be signed by a Trusted Publisher.

CONFIGURATION MANAGEMENT

DTOO129 - Links that invoke instances of Internet Explorer from within an Office product must be blocked.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO131 - Trust Bar Notifications for unsigned application add-ins must be blocked.

CONFIGURATION MANAGEMENT

DTOO132 - File Downloads must be configured for proper restrictions.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO133 - All automatic loading from trusted locations must be disabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO134 - Disallowance of trusted locations on the network must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO139 - The Save commands default file format must be configured.

CONFIGURATION MANAGEMENT

DTOO142 - Force encrypted macros to be scanned in open XML documents must be determined and configured.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO146 - Trust access for VBA must be disallowed.

CONFIGURATION MANAGEMENT

DTOO209 - Protection from zone elevation must be enforced.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO211 - ActiveX Installs must be configured for proper restriction.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO288 - Files in unsafe locations must be opened in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO292 - Document behavior if file validation fails must be set.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO293 - Attachments opened from Outlook must be in Protected View.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO302 - The automatically update links feature must be disabled.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO303 - A warning before printing that the document contains tracking changes must be provided.

CONFIGURATION MANAGEMENT

DTOO304 - Warning Bar settings for VBA macros must be configured.

CONFIGURATION MANAGEMENT

DTOO328 - Online translation dictionaries must not be used.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO333 - Word 2 and earlier binary documents and templates must be blocked for open/save.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO334 - Word 2000 binary documents and templates must be configured to edit in protected view.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO336 - Word 6.0 binary documents and templates must be configured for block open/save actions.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO337 - Word 95 binary documents and templates must be configured to edit in protected view.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO338 - Word 97 binary documents and templates must be configured to edit in protected view.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO339 - Word XP binary documents and templates must be configured to edit in protected view.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO426 - Word must be configured to warn when opening a document with custom XML markup.

CONFIGURATION MANAGEMENT

DTOO600 - Macros must be blocked from running in Office 2013 files from the Internet.

SYSTEM AND COMMUNICATIONS PROTECTION

DTOO999-Word13 - The version of Microsoft Word running on the system must be a supported version.

SYSTEM AND INFORMATION INTEGRITY