An error occurred:

Check: DTOO336 - Word

Microsoft Word 2010 STIG: DTOO336 - Word (in versions v1 r11 through v1 r10)

Title

Word 6.0 binary documents and templates must be configured for block open/save actions. (Cat II impact)

Discussion

This setting allows you to determine whether users can open, view, edit, or save Word files with the format specified by the title of this policy setting.

Check Content

The policy value for User Configuration -> Administrative Templates -> Microsoft Word 2010 -> Word Options -> Security -> Trust Center -> File Block Settings “Word 6.0 binary documents and templates” must be “Enabled: Open/Save blocked, use open policy”. Procedure: Use the Windows Registry Editor to navigate to the following key: HKCU\Software\Policies\Microsoft\Office\14.0\word\security\fileblock Criteria: If the value Word60Files is REG_DWORD = 2, this is not a finding.

Fix Text

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Word 2010 -> Word Options -> Security -> Trust Center -> File Block Settings “Word 6.0 binary documents and templates” to “Enabled: Open/Save blocked, use open policy”.

Additional Identifiers

Rule ID: SV-34097r1_rule

Vulnerability ID: V-26656

Group Title: DTOO336 - Word 6.0 binary documents and templates

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001662

The information system takes organization-defined corrective action when organization-defined unacceptable mobile code is identified.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
SC-18 (1)

Identify Unacceptable Code / Take Corrective Actions