UCF STIG Viewer Logo

Configuration for file validation must be enforced.


Overview

Finding ID Version Rule ID IA Controls Severity
V-26592 DTOO119 - Word SV-33875r1_rule ECSC-1 Medium
Description
Office Binary Documents (97-2003) are checked to see if they conform against the file format schema before they are opened.
STIG Date
Microsoft Word 2010 2014-01-07

Details

Check Text ( C-34249r1_chk )
The policy value for User Configuration -> Administrative Templates -> Microsoft Word 2010 -> Word Options -> Security “Turn off file validation” must be set to “Disabled”.

Procedure: Use the Windows Registry Editor to navigate to the following key:

HKCU\Software\Policies\Microsoft\Office\14.0\word\security\filevalidation

Criteria: If the value EnableOnLoad is REG_DWORD = 1, this is not a finding.
Fix Text (F-29943r1_fix)
Set the policy value for User Configuration -> Administrative Templates -> Microsoft Word 2010 -> Word Options -> Security “Turn off file validation” to “Disabled”.