Title

The ability to create an online presentation programmatically must be disabled. (Cat II impact)

Discussion

Allowing online presentations to be created programmatically allows for the capability of malicious content to become imbedded in those programmatically created presentations.

Check Content

Verify the policy value for User Configuration >> Administrative Templates >> Microsoft Office 2013 >> Present Online >> "Restrict programmatic access for creating online presentations in PowerPoint and Word" is set to "Enabled". Use the Windows Registry Editor to navigate to the following HKCU\Software\Policies\Microsoft\Office\15.0\common\broadcast If the value “disableprogrammaticaccess” is REG_DWORD = 1, this is not a finding.

Fix Text

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2013 -> Present Online -> "Restrict programmatic access for creating online presentations in PowerPoint and Word" to "Enabled".

Additional Identifiers

Rule ID: SV-53211r4_rule

Vulnerability ID: V-40879

Group Title: DTOO409 - Disable programmatic creation of online presentation

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.