DTOO112 - Open/Save actions for Dif and Sylk files must be blocked.

Information

This setting specifies whether users can open, view, edit, or save files saved in the specified format. Enabling block of the specified format mitigates zero-day security attacks (which are attacks that occur between the time that a vulnerability becomes publicly known and a software update or service pack is available) by temporarily preventing users from opening specific types of files and to prevent a user from opening files that have been saved in earlier and pre-release (beta) Microsoft Office formats.

Solution

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Excel 2013 -> Excel Options -> Security -> Trust Center -> File Block Settings 'Dif and Sylk files' to 'Enabled: Open/Save blocked, use open policy'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Excel_2013_V1R8_STIG.zip

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-18(1), CAT|II, CCI|CCI-001662, Rule-ID|SV-242337r961086_rule, STIG-ID|DTOO112, STIG-Legacy|SV-53620, STIG-Legacy|V-26596, Vuln-ID|V-242337

Plugin: Windows

Control ID: 5cdc77dc2d0b40a68f33922678aea06a6e6fdf32b344c7df1c70d58b325b323f