An error occurred:

Check: DTOO238 - Outlook

Microsoft Outlook 2010 STIG: DTOO238 - Outlook (in versions v1 r13 through v1 r12)

Title

Users customizing attachment security settings must be prevented. (Cat II impact)

Discussion

All installed trusted COM addins can be trusted. Exchange Settings for the addins still override if present and this option is selected

Check Content

The policy value for User Configuration -> Administrative Templates -> Microsoft Outlook 2010 -> Security “Prevent users from customizing attachment security settings” must be set to “Enabled”. Procedure: Use the Windows Registry Editor to navigate to the following key: HKCU\Software\Policies\Microsoft\Office\14.0\outlook Criteria: If the value DisallowAttachmentCustomization is REG_DWORD = 1, this is not a finding.

Fix Text

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Outlook 2010 -> Security “Prevent users from customizing attachment security settings” to “Enabled”.

Additional Identifiers

Rule ID: SV-33525r1_rule

Vulnerability ID: V-17766

Group Title: DTOO238 - Prev't users customizing security set

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001170

The information system prevents the automatic execution of mobile code in organization-defined software applications.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
SC-18 (4)

Prevent Automatic Execution