Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-40879 | DTOO409 | SV-53211r2_rule | Medium |
Description |
---|
Allowing online presentations to be created programmatically allows for the capability of malicious content to become imbedded in those programmatically created presentations. |
STIG | Date |
---|---|
Microsoft Office System 2013 STIG | 2017-01-04 |
Check Text ( C-47517r3_chk ) |
---|
Verify the policy value for User Configuration >> Administrative Templates >> Microsoft Office 2013 >> Present Online >> "Restrict programmatic access for creating online presentations in PowerPoint and Word" is set to "Enabled". Use the Windows Registry Editor to navigate to the following hive: HKEY_Users For every users profile hive under HKEY_Users, navigate to the following key: \software\policies\Microsoft\office\15.0\common\broadcast If the value “disableprogrammaticaccess” is REG_DWORD = 1 for every user profile hive, this is not a finding. |
Fix Text (F-46137r1_fix) |
---|
Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2013 -> Present Online -> "Restrict programmatic access for creating online presentations in PowerPoint and Word" to "Enabled". |