1.19 Ensure 'Enable third party software injection blocking' is set to 'Enabled'

Information

Google Chrome can prevent third party software from injecting executable code into Chrome's processes.

The recommended state for this setting is: Enabled (1)

Rationale:

Third party software shall not be able to inject executable code into Chrome's processes.

Impact:

None - This is the default behavior.

Solution

To establish the recommended configuration via Group Policy, set the following UI path to Enabled:

Computer Configuration\Policies\Administrative Templates\Google\Google Chrome\Enable third party software injection blocking

Default Value:

Unset (Same as Enabled, but user can change)

See Also

https://workbench.cisecurity.org/benchmarks/8691

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-8, CSCv7|10.5

Plugin: Windows

Control ID: abc17f3be42f551cd3cf4c657f6ce8277b954a6d1ada9c25d854a224417ef104