DTOO406 - The ability to automatically hyperlink screenshots within Word, PowerPoint, Excel and Outlook must be disabled.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

The ability to automatically bind hyperlink to a screenshot inserted through the Insert Screenshot tool introduces the possibility of a malicious URL or website being imbedded in the Word, PowerPoint, Excel or Outlook document. Disabling the hyperlink in those screenshots will ensure users do not have the ability to directly open the hyperlinks.

Solution

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2013 -> Miscellaneous -> 'Do not automatically hyperlink screenshots' to 'Enabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_OfficeSystem_2013_V2R1_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6, CAT|II, CCI|CCI-000381, Rule-ID|SV-228536r508020_rule, STIG-ID|DTOO406, STIG-Legacy|SV-53195, STIG-Legacy|V-40863, Vuln-ID|V-228536

Plugin: Windows

Control ID: 92d68957a2e49c2363650c33b1fc2220c4fabace191a132a01c59def04bf6c8b