UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

All automatic loading from Trusted Locations must be disabled.


Overview

Finding ID Version Rule ID IA Controls Severity
V-17471 DTOO133 - InfoPath SV-33860r1_rule ECSC-1 Medium
Description
Trusted locations specified in the Trust Center are used to define file locations assumed to be safe. Content, code, and add-ins are allowed to load from trusted locations with a minimal amount of security, without prompting the users for permission. If a dangerous file is opened from a trusted location, it will not be subject to standard security measures and could harm users' computers or data. By default, files located in trusted locations (those specified in the Trust Center) are assumed to be safe.
STIG Date
Microsoft InfoPath 2010 2011-09-29

Details

Check Text ( C-34218r1_chk )
The policy value for User Configuration -> Administrative Templates -> Microsoft InfoPath 2010 -> Security -> Trust Center “Disable all trusted locations” must be set to “Enabled”.

Procedure: Use the Windows Registry Editor to navigate to the following key:

HKCU\Software\Policies\Microsoft\Office\14.0\infopath\security\trusted locations

Criteria: If the value AllLocationDisabled is REG_DWORD = 1, this is not a finding.
Fix Text (F-29909r1_fix)
Set the policy value for User Configuration -> Administrative Templates -> Microsoft InfoPath 2010 -> Security -> Trust Center “Disable all trusted locations” to “Enabled”.