UCF STIG Viewer Logo

Extraction options must be blocked when opening corrupt Excel workbooks.


Overview

Finding ID Version Rule ID IA Controls Severity
V-223327 O365-EX-000018 SV-223327r508019_rule Medium
Description
This policy setting controls whether Excel presents users with a list of data extraction options before beginning an Open and Repair operation when users choose to open a corrupt workbook in repair or extract mode. If you enable this policy setting, Excel opens the file using the Safe Load process and does not prompt users to choose between repairing or extracting data. If you disable or do not configure this policy setting, Excel prompts the user to select either to repair or to extract data, and to select either to convert to values or to recover formulas.
STIG Date
Microsoft Office 365 ProPlus Security Technical Implementation Guide 2022-06-17

Details

Check Text ( C-25000r442200_chk )
Verify the policy value for User Configuration >> Administrative Templates >> Microsoft Excel 2016 >> Data Recovery >> Do not show data extraction options when opening corrupt workbooks is set to "Enabled".

Use the Windows Registry Editor to navigate to the following key:

HKCU\software\policies\microsoft\office\16.0\excel\options

If the value for extractdatadisableui is REG_DWORD = 1, this is not a finding.
Fix Text (F-24988r442201_fix)
Set policy value for User Configuration >> Administrative Templates >> Microsoft Excel 2016 >> Data Recovery >> Do not show data extraction options when opening corrupt workbooks to "Enabled".