Title

Word 2000 binary documents and templates must be configured to edit in protected view. (Cat II impact)

Discussion

This setting allows you to determine whether users can open, view, edit, or save Word files with the format specified by the title of this policy setting.

Check Content

The policy value for User Configuration -> Administrative Templates -> Microsoft Word 2010 -> Word Options -> Security -> Trust Center -> File Block Settings "Word 2000 binary documents and templates" must be "Enabled: Allow editing and open in Protected View". Procedure: Use the Windows Registry Editor to navigate to the following key: HKCU\Software\Policies\Microsoft\Office\14.0\word\security\fileblock Criteria: If the value Word2000Files is REG_DWORD = 5, this is not a finding.

Fix Text

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Word 2010 -> Word Options -> Security -> Trust Center -> File Block Settings "Word 2000 binary documents and templates" to "Enabled: Allow editing and open in Protected View".

Additional Identifiers

Rule ID: SV-242307r961086_rule

Vulnerability ID: V-242307

Group Title: SRG-APP-000207

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.