Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-17545 | DTOO304 | SV-53248r1_rule | ECSC-1 | Medium |
Description |
---|
When users open files containing VBA Macros, applications open the files with the macros disabled and displays the Trust Bar with a warning that macros are present and have been disabled. Users may then enable these macros by clicking Options on the Trust Bar and selecting the option to enable them. Disabling or not configuring this setting may allow dangerous macros to become active on the user's computer or the network. |
STIG | Date |
---|---|
Microsoft Publisher 2013 STIG | 2013-12-12 |
Check Text ( C-47554r1_chk ) |
---|
Verify the policy value for User Configuration -> Administrative Templates -> Microsoft Publisher 2013 -> Security -> Trust Center "VBA Macro Notification Settings" must be "Enabled (Disabled all with notifications)". Procedure: Use the Windows Registry Editor to navigate to the following key: HKCU\Software\Policies\Microsoft\Office\15.0\publisher\security Criteria: If the value VBAWarnings is REG_DWORD = 2, this is not a finding. |
Fix Text (F-46176r1_fix) |
---|
Set the policy value for User Configuration -> Administrative Templates -> Microsoft Publisher 2013 -> Security -> Trust Center "VBA Macro Notification Settings" to "Enabled (Disabled all with notifications)". |