Check: DTOO288 - PowerPoint
Microsoft PowerPoint 2010 STIG:
DTOO288 - PowerPoint
(in versions v1 r10 through v1 r9)
Title
Files in unsafe locations must be opened in Protected View. (Cat II impact)
Discussion
This policy setting determines if files located in unsafe locations will open in Protected View. If unsafe locations have not been specified, only the "Downloaded Program Files" and "Temporary Internet Files" folders are considered unsafe locations. If enabling this policy setting, files located in unsafe locations do not open in Protected View. If disabling or not configuring this policy setting, files located in unsafe locations open in Protected View.
Check Content
The policy value for User Configuration -> Administrative Templates -> Microsoft PowerPoint 2010 -> PowerPoint Options -> Security -> Trust Center -> Protected View “Do not open files in unsafe locations in Protected View” must be set to “Disabled”. Procedure: Use the Windows Registry Editor to navigate to the following key: HKCU\Software\Policies\Microsoft\Office\14.0\powerpoint\security\protectedview Criteria: If the value DisableUnsafeLocationsInPV is REG_DWORD = 0, this is not a finding.
Fix Text
Set the policy value for User Configuration -> Administrative Templates -> Microsoft PowerPoint 2010 -> PowerPoint Options -> Security -> Trust Center -> Protected View “Do not open files in unsafe locations in Protected View” to “Disabled”.
Additional Identifiers
Rule ID: SV-33866r1_rule
Vulnerability ID: V-26615
Group Title: DTOO288 - Files in unsafe locations
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001170 |
The information system prevents the automatic execution of mobile code in organization-defined software applications. |
Controls
Number | Title |
---|---|
SC-18 (4) |
Prevent Automatic Execution |