UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Database functionality configurations must be displayed to the user.


Overview

Finding ID Version Rule ID IA Controls Severity
V-70945 DTOO135 SV-85569r1_rule Medium
Description
When users open an untrusted Access 2016 database that contains user-programmed executable components, Access opens the database with the components disabled and displays the Message Bar with a warning that database content has been disabled. Users can inspect the contents of the database, but cannot use any disabled functionality until they enable it by clicking Options on the Message Bar and selecting the appropriate action. The default configuration can be changed so that users see a dialog box when they open an untrusted database with executable components. Users must then choose whether to enable or disable the components before working with the database. In these circumstances users frequently enable the components, even if they do not require them. Executable components can be used to launch an attack against a computer environment. Disabling this setting enforces Access 2016 to display the action items, so is unlikely to cause usability issues.
STIG Date
Microsoft Access 2016 STIG 2016-12-01

Details

Check Text ( None )
None
Fix Text (F-45697r1_fix)
Set the policy value for User Configuration -> Administrative Templates -> Microsoft Access 2016 -> Tools \ Security "Modal Trust Decision Only" to "Disabled".