800-53|SC-18(4)

Title

PREVENT AUTOMATIC EXECUTION

Description

The information system prevents the automatic execution of mobile code in [Assignment: organization-defined software applications] and enforces [Assignment: organization-defined actions] prior to executing the code.

Supplemental

Actions enforced before executing mobile code, include, for example, prompting users prior to opening electronic mail attachments. Preventing automatic execution of mobile code includes, for example, disabling auto execute features on information system components employing portable storage devices such as Compact Disks (CDs), Digital Video Disks (DVDs), and Universal Serial Bus (USB) devices.

Reference Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

Parent Title: MOBILE CODE

Family: SYSTEM AND COMMUNICATIONS PROTECTION

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1 Set 'Allow software to run or install even if the signature is invalid' to 'Disabled'WindowsCIS IE 9 v1.0.0
1.1.3.2.3 Ensure 'VBA Macro Notification Settings' is set to Enabled (Disable all Except Digitally Signed Macros)WindowsCIS Microsoft Office Access 2013 v1.0.1
1.1.3.2.3 Ensure 'VBA Macro Notification Settings' is set to Enabled (Disable all Except Digitally Signed Macros)WindowsCIS Microsoft Office Access 2016 v1.0.1
1.1.3.2.4 Ensure Set 'Disable Trust Bar Notification for unsigned application add-ins ' is set to EnabledWindowsCIS Microsoft Office Access 2016 v1.0.1
1.1.3.2.4 Ensure Set 'Disable Trust Bar Notification for unsigned application add-ins' is set to EnabledWindowsCIS Microsoft Office Access 2013 v1.0.1
1.2 Set 'Allow Active X One Off Forms' to 'Enabled:Load only Outlook Controls'WindowsCIS MS Office Outlook 2010 v1.0.0
1.2 Set 'Allow software to run or install even if the signature is invalid' to 'Disabled'WindowsCIS IE 11 v1.0.0
1.2 Set 'Allow software to run or install even if the signature is invalid' to 'Disabled'WindowsCIS IE 10 v1.1.0
1.4.7.2.2.1 Ensure 'Turn Off Protected View For Attachments Opened from Outlook' is set to DisabledWindowsCIS Microsoft Office Excel 2016 v1.0.1
1.4.7.2.2.1 Ensure 'Turn Off Protected View For Attachments Opened from Outlook' is set to DisabledWindowsCIS Microsoft Office Excel 2013 v1.0.1
1.4.7.2.2.2 Ensure 'Do Not Open Files From The Internet Zone in Protected View' is set to DisabledWindowsCIS Microsoft Office Excel 2013 v1.0.1
1.4.7.2.2.2 Ensure 'Do Not Open Files From The Internet Zone in Protected View' is set to DisabledWindowsCIS Microsoft Office Excel 2016 v1.0.1
1.4.7.2.2.3 Ensure 'Do Not Open Files in Unsafe Locations in Protected View' is set to DisabledWindowsCIS Microsoft Office Excel 2013 v1.0.1
1.4.7.2.2.3 Ensure 'Do Not Open Files in Unsafe Locations in Protected View' is set to DisabledWindowsCIS Microsoft Office Excel 2016 v1.0.1
1.4.7.2.5 Ensure 'Disable Trust Bar Notification For Unsigned Application Add-ins And Block Them' is set to EnabledWindowsCIS Microsoft Office Excel 2013 v1.0.1
1.4.7.2.5 Ensure 'Disable Trust Bar Notification For Unsigned Application Add-ins And Block Them' is set to EnabledWindowsCIS Microsoft Office Excel 2016 v1.0.1
1.4.7.2.7 Ensure 'VBA Macro Notification Settings' is set to Enabled (Disable all Except Digitally Signed Macros)WindowsCIS Microsoft Office Excel 2016 v1.0.1
1.4.7.2.7 Ensure 'VBA Macro Notification Settings' is set to Enabled (Disable all Except Digitally Signed Macros)WindowsCIS Microsoft Office Excel 2013 v1.0.1
1.5 Set 'Allow scripts in one- off Outlook forms' to 'Disabled'WindowsCIS MS Office Outlook 2010 v1.0.0
1.6.6.2.2.2 Ensure 'Do not open from the Internet zone in Protected View' is set to DisabledWindowsCIS Microsoft Office PowerPoint 2013 v1.0.1
1.6.6.2.2.2 Ensure 'Do not open from the Internet zone in Protected View' is set to DisabledWindowsCIS Microsoft Office PowerPoint 2016 v1.0.1
1.6.6.2.2.3 Ensure 'Turn off Protected View for attachments opened from Outlook' is set to DisabledWindowsCIS Microsoft Office PowerPoint 2016 v1.0.1
1.6.6.2.2.3 Ensure 'Turn off Protected View for attachments opened from Outlook' is set to DisabledWindowsCIS Microsoft Office PowerPoint 2013 v1.0.1
1.6.6.2.2.4 Ensure 'Do not open files in unsafe locations in Protected View' is set to DisabledWindowsCIS Microsoft Office PowerPoint 2016 v1.0.1
1.6.6.2.2.4 Ensure 'Do not open files in unsafe locations in Protected View' is set to DisabledWindowsCIS Microsoft Office PowerPoint 2013 v1.0.1
1.6.6.2.4 Ensure 'Disable Trust Bar Notification for Unsigned Application Add-ins and Block Them' is set to EnableWindowsCIS Microsoft Office PowerPoint 2016 v1.0.1
1.6.6.2.4 Ensure 'Disable Trust Bar Notification for Unsigned Application Add-ins and Block Them' is set to EnableWindowsCIS Microsoft Office PowerPoint 2013 v1.0.1
1.6.6.2.7 Ensure 'VBA Macro Notification Settings' is set to Enabled (Disable all Except Digitally Signed)WindowsCIS Microsoft Office PowerPoint 2013 v1.0.1
1.6.6.2.7 Ensure 'VBA Macro Notification Settings' is set to Enabled (Disable all Except Digitally Signed)WindowsCIS Microsoft Office PowerPoint 2016 v1.0.1
1.8.7.2.2.1 Ensure 'Do Not Open Files From The Internet Zone in Protected View' is set to DisabledWindowsCIS Microsoft Office Word 2016 v1.1.0
1.8.7.2.2.1 Ensure 'Do Not Open Files From The Internet Zone in Protected View' is set to DisabledWindowsCIS Microsoft Office Word 2013 v1.1.0
1.8.7.2.2.2 Ensure 'Do Not Open Files in Unsafe Locations in Protected View' is set to DisabledWindowsCIS Microsoft Office Word 2016 v1.1.0
1.8.7.2.2.2 Ensure 'Do Not Open Files in Unsafe Locations in Protected View' is set to DisabledWindowsCIS Microsoft Office Word 2013 v1.1.0
1.8.7.2.2.3 Ensure 'Turn Off Protected View for Attachments Opened From Outlook' is set to DisabledWindowsCIS Microsoft Office Word 2013 v1.1.0
1.8.7.2.2.3 Ensure 'Turn Off Protected View for Attachments Opened From Outlook' is set to DisabledWindowsCIS Microsoft Office Word 2016 v1.1.0
1.13.1.4 Ensure 'Do not permit download of content from safe zones' is set to DisabledWindowsCIS Microsoft Office Outlook 2016 v1.1.0 Level 1
1.13.1.4 Ensure 'Do not permit download of content from safe zones' is set to DisabledWindowsCIS Microsoft Office Outlook 2013 v1.1.0 Level 1
1.13.3.1.2 Ensure 'Display Level 1 attachments' is set to DisabledWindowsCIS Microsoft Office Outlook 2013 v1.1.0 Level 1
1.13.3.1.2 Ensure 'Display Level 1 attachments' is set to DisabledWindowsCIS Microsoft Office Outlook 2016 v1.1.0 Level 1
1.13.3.2.1 Ensure 'Allow scripts in one-off Outlook forms' is set to DisabledWindowsCIS Microsoft Office Outlook 2013 v1.1.0 Level 1
1.13.3.2.1 Ensure 'Allow scripts in one-off Outlook forms' is set to DisabledWindowsCIS Microsoft Office Outlook 2016 v1.1.0 Level 1
1.13.4.3 Ensure 'Security Setting for Macros' is set to Enabled:Never warn, disable allWindowsCIS Microsoft Office Outlook 2013 v1.1.0 Level 1
1.13.4.3 Ensure 'Security Setting for Macros' is set to Enabled:Never warn, disable allWindowsCIS Microsoft Office Outlook 2016 v1.1.0 Level 1
1.13.5 Ensure 'Allow Active X One Off Forms' is set to Enabled:Load only Outlook ControlsWindowsCIS Microsoft Office Outlook 2016 v1.1.0 Level 1
1.13.5 Ensure 'Allow Active X One Off Forms' is set to Enabled:Load only Outlook ControlsWindowsCIS Microsoft Office Outlook 2013 v1.1.0 Level 1
1.13.6 Ensure 'Configure Add-In Trust Level' is set to Enabled:Trust all loaded and installed COM addinsWindowsCIS Microsoft Office Outlook 2013 v1.1.0 Level 1
1.13.6 Ensure 'Configure Add-In Trust Level' is set to Enabled:Trust all loaded and installed COM addinsWindowsCIS Microsoft Office Outlook 2016 v1.1.0 Level 1
1.16 Set 'Do not allow Outlook object model scripts to run for shared folders' to 'Enabled'WindowsCIS MS Office Outlook 2010 v1.0.0
1.18 Set 'Do not permit download of content from safe zones' to 'Disabled'WindowsCIS MS Office Outlook 2010 v1.0.0
1.29 Set 'Security Level' to 'Enabled:Never warn, disable all'WindowsCIS MS Office Outlook 2010 v1.0.0