DTOO339 - Word XP binary documents and templates must be configured to edit in protected view.

Information

This setting specifies whether users can open, view, edit, or save files saved in the specified format. Enabling the editing of the specified format in protected view, it mitigates zero-day security attacks (which are attacks that occur during between the time that a vulnerability becomes publicly known and a software update or service pack is available) by temporarily preventing users from opening specific types of files and to prevent a user from opening files that have been saved in earlier and pre-release (beta) Microsoft Office formats.

Solution

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Word 2013 -> Word Options -> Security -> Trust Center -> File Block Settings 'Word XP binary documents and templates' to 'Enabled: Allow editing and open in Protected View'.

See Also

http://iasecontent.disa.mil/stigs/zip/U_MicrosoftWord2013_V1R5_STIG.zip

Item Details

References: CAT|II, Rule-ID|SV-55922r1_rule, STIG-ID|DTOO339, Vuln-ID|V-26659

Plugin: Windows

Control ID: 5a031e2b6a9ee8bf9a7107714470234fb1063d8845cf9c8ec2bd7dce6a008dba