Skip to content
Log In

CCI-001170

Prevents the automatic execution of mobile code in organization-defined software applications.

Adobe Reader DC must enable Enhanced Security in a Standalone Application.

1 rule found Severity: Medium

Logo

Adobe Reader DC must enable Enhanced Security in a Browser.

1 rule found Severity: Medium

Logo

Adobe Reader DC must enable Protected Mode.

1 rule found Severity: Medium

Logo

Adobe Reader DC must enable Protected View.

1 rule found Severity: Medium

Logo

Adobe Reader DC must Block Websites.

1 rule found Severity: Medium

Logo

Adobe Reader DC must block access to Unknown Websites.

1 rule found Severity: Medium

Logo

Adobe Reader DC must prevent opening files other than PDF or FDF.

1 rule found Severity: Medium

Logo

Adobe Reader DC must block Flash Content.

1 rule found Severity: Medium

Logo

Disabling of user name and password syntax from being used in URLs must be enforced.

9 rules found Severity: Medium

Logo

Saved from URL mark to assure Internet zone processing must be enforced.

9 rules found Severity: Medium

Logo

Navigation to URLs embedded in Office products must be blocked.

9 rules found Severity: Medium

Logo

The Saved from URL mark must be selected to enforce Internet zone processing in PowerPoint.

1 rule found Severity: Medium

Logo

All automatic loading from trusted locations must be disabled.

3 rules found Severity: Medium

Logo

Disallowance of trusted locations on the network must be enforced.

3 rules found Severity: Medium

Logo

The scanning of encrypted macros in open XML documents must be enforced.

2 rules found Severity: Medium

Logo

The ability to run programs from a PowerPoint presentation must be disallowed.

1 rule found Severity: Medium

Logo

Attachments opened from Outlook must be in Protected View.

2 rules found Severity: Medium

Logo

Disabling of user name and password syntax from being used in URLs must be enforced in PowerPoint Viewer.

1 rule found Severity: Medium

Logo

The Saved from URL mark must be selected to enforce Internet zone processing in PowerPoint Viewer.

1 rule found Severity: Medium

Logo

Navigation to URLs embedded in Office products must be blocked in PowerPoint Viewer.

1 rule found Severity: Medium

Logo

Macros must be blocked from running in Office files from the Internet.

3 rules found Severity: Medium

Logo

Navigation to URLs embedded in Office products must be blocked in PowerPoint.

2 rules found Severity: Medium

Logo

Files in unsafe locations must be opened in Protected View.

2 rules found Severity: Medium

Logo

Document behavior if file validation fails must be set.

4 rules found Severity: Medium

Logo

Files on local Intranet UNC must be opened in Protected View.

3 rules found Severity: Medium

Logo

Untrusted intranet zone access to Project servers must not be allowed.

1 rule found Severity: Medium

Logo

Force encrypted macros to be scanned in open XML documents must be determined and configured.

1 rule found Severity: Medium

Logo

Files in unsafe locations must be opened in Protected View.

7 rules found Severity: Medium

Logo

Document behavior if file validation fails must be set.

5 rules found Severity: Medium

Logo

The automatically update links feature must be disabled.

1 rule found Severity: Medium

Logo

Online translation dictionaries must not be used.

1 rule found Severity: Medium

Logo

Disabling of user name and password syntax from being used in URLs must be enforced.

17 rules found Severity: Medium

Logo

Saved from URL mark to assure Internet zone processing must be enforced.

9 rules found Severity: Medium

Logo

Navigation to URL's embedded in Office products must be blocked.

8 rules found Severity: Medium

Logo

Data Execution Prevention must be enforced.

9 rules found Severity: Medium

Logo

Navigation to URLs embedded in Office products must be blocked.

10 rules found Severity: Medium

Logo

All automatic loading from Trusted Locations must be disabled.

6 rules found Severity: Medium

Logo

Force encrypted macros to be scanned in open XML documents must be determined and configured.

4 rules found Severity: Medium

Logo

Disallowance of Trusted Locations on the network must be enforced.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to disable local setting override for reporting to Microsoft MAPS.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to join Microsoft MAPS.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to only send safe samples for MAPS telemetry.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to not allow override of behavior monitoring.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to enable behavior monitoring.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to turn on e-mail scanning.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to block executable content from email client and webmail.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured block Office applications from creating child processes.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured block Office applications from creating executable content.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to block Office applications from injecting into other processes.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to impede JavaScript and VBScript to launch executables.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to block execution of potentially obfuscated scripts.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to block Win32 imports from macro code in Office.

1 rule found Severity: Medium

Logo

Microsoft Defender AV must be configured to prevent user and apps from accessing dangerous websites.

1 rule found Severity: Medium

Logo

Internet links and Network UNCs created as embedded hyperlinks must be prevented.

2 rules found Severity: Medium

Logo

Load pictures from Web pages must be disallowed.

1 rule found Severity: Medium

Logo

Macro storage must be in Personal macro workbooks.

1 rule found Severity: Medium

Logo

Attachments opened from Outlook must be in Protected View.

5 rules found Severity: Medium

Logo

The Saved from URL mark must be selected to enforce Internet zone processing.

8 rules found Severity: Medium

Logo

All automatic loading from trusted locations must be disabled.

2 rules found Severity: Medium

Logo

The scanning of encrypted macros in open XML documents must be enforced.

1 rule found Severity: Medium

Logo

Disallowance of trusted locations on the network must be enforced.

2 rules found Severity: Medium

Logo

The loading of images from web pages must not be allowed.

1 rule found Severity: Medium

Logo

Macro storage must be in personal macro workbooks.

1 rule found Severity: Medium

Logo

Excel attachments opened from Outlook must be in Protected View.

1 rule found Severity: Medium

Logo

Macros must be blocked from running in Office 2013 files from the Internet.

2 rules found Severity: Medium

Logo

Email with InfoPath forms must be configured to show UI to recipients.

1 rule found Severity: Medium

Logo

Dynamic caching of InfoPath eMail forms must be disabled.

1 rule found Severity: Medium

Logo

Disabling of email forms from the Full Trust Security Zone must be configured.

2 rules found Severity: Medium

Logo

Disabling email forms from the Internet Security Zone must be configured.

2 rules found Severity: Medium

Logo

Disabling email forms running in Restricted Security Level must be configured.

2 rules found Severity: Medium

Logo

Disabling the opening of solutions from the Internet Security Zone must be configured.

2 rules found Severity: Medium

Logo

Disabling sending form templates with the email forms must be configured.

1 rule found Severity: Medium

Logo

InfoPath 2003 forms as email forms in InfoPath 2010 must be disallowed.

1 rule found Severity: Medium

Logo

Unsafe file types must be prevented from being attached to InfoPath forms.

1 rule found Severity: Medium

Logo

InfoPath must be enforced to not use e-mail forms from the Intranet security zone.

1 rule found Severity: Medium

Logo

InfoPath e-mail forms in Outlook must be disallowed.

1 rule found Severity: Medium

Logo

Disabling opening forms with managed code from the Internet security zone must be configured.

1 rule found Severity: Medium

Logo

Email with InfoPath forms must be configured to show UI to recipients.

1 rule found Severity: Medium

Logo

Disable dynamic caching of the form template in InfoPath eMail forms.

1 rule found Severity: Medium

Logo

Disabling sending form templates with the email forms must be configured.

1 rule found Severity: Medium

Logo

InfoPath 2003 forms as email forms in InfoPath 2013 must be disallowed.

1 rule found Severity: Medium

Logo

Unsafe file types must be prevented from being attached to InfoPath forms.

1 rule found Severity: Medium

Logo

InfoPath must be enforced to not use email forms from the Intranet security zone.

1 rule found Severity: Medium

Logo

InfoPath email forms in Outlook must be disallowed.

1 rule found Severity: Medium

Logo

Disabling opening forms with managed code from the Internet security zone must be configured.

1 rule found Severity: Medium

Logo

Documents must be configured to not open as Read Write when browsing.

2 rules found Severity: Medium

Logo

Relying on Vector markup Language (VML) for displaying graphics in browsers must be disallowed.

1 rule found Severity: Medium

Logo

Automation Security to enforce macro level security in Office documents must be configured.

2 rules found Severity: Medium

Logo

The ability to create an online presentation programmatically must be disabled.

1 rule found Severity: Medium

Logo

ActiveX One-Off forms must be configured.

1 rule found Severity: Medium

Logo

Scripts in One-Off Outlook forms must be disallowed.

2 rules found Severity: Medium

Logo

The Add-In Trust Level must be configured.

2 rules found Severity: Medium

Logo

Outlook Object Model scripts must be disallowed to run for public folders.

2 rules found Severity: Medium

Logo

Outlook Object Model scripts must be disallowed to run for shared folders.

2 rules found Severity: Medium

Logo

Users customizing attachment security settings must be prevented.

2 rules found Severity: Medium

Logo

Vector markup Language (VML) for displaying graphics in browsers must be disallowed.

1 rule found Severity: Medium

Logo

Customer-submitted templates downloads from Office.com must be disallowed.

1 rule found Severity: Medium

Logo

Disable user name and password syntax from being used in URLs

1 rule found Severity: Medium

Logo

Active X One-Off forms must be configured.

1 rule found Severity: Medium

Logo

Outlook Object Model scripts must be disallowed to run for shared folders.

1 rule found Severity: Medium

Logo

Outlook Object Model scripts must be disallowed to run for public folders.

1 rule found Severity: Medium

Logo

ActiveX One-Off forms must be configured.

1 rule found Severity: Medium

Logo

The Add-In Trust Level must be configured.

1 rule found Severity: Medium

Logo

Users customizing attachment security settings must be prevented.

1 rule found Severity: Medium

Logo

Scripts in One-Off Outlook forms must be disallowed.

1 rule found Severity: Medium

Logo

Disabling of user name and password syntax from being used in URLs must be enforced in PowerPoint.

1 rule found Severity: Medium

Logo

The Saved from URL mark must be selected to enforce Internet zone processing in PowerPoint.

1 rule found Severity: Medium

Logo

Enforce encrypted macros to be scanned in open XML documents must be determined and configured.

1 rule found Severity: Medium

Logo

Disallowance of Trusted Locations on the network must be enforced.

3 rules found Severity: Medium

Logo

The ability to run programs from a PowerPoint presentation must be disallowed.

2 rules found Severity: Medium

Logo

Disabling of user name and password syntax from being used in URLs must be enforced in PowerPoint Viewer.

1 rule found Severity: Medium

Logo

The Saved from URL mark must be selected to enforce Internet zone processing in PowerPoint Viewer.

1 rule found Severity: Medium

Logo

The Publisher Automation Security Level must be configured for high security.

2 rules found Severity: Medium

Logo

The Saved from URL mark must be selected to enforce Internet zone processing

1 rule found Severity: Medium

Logo

Navigation to URLs embedded in Office products must be blocked in PowerPoint Viewer.

1 rule found Severity: Medium

Logo

Untrusted intranet zone access to Project servers must not be allowed.

2 rules found Severity: Medium

Logo

The Publisher Automation Security Level must be configured for high security.

1 rule found Severity: Medium

Logo

The automatically update links feature must be disabled.

1 rule found Severity: Medium

Logo

Online translation dictionaries must not be used.

1 rule found Severity: Medium

Logo

Macros must be blocked from running in Office 2013 files from the Internet.

1 rule found Severity: Medium

Logo

The automatically update links feature must be configured as off.

1 rule found Severity: Medium

Logo

Online translation dictionaries must be in use.

1 rule found Severity: Medium

Logo

The Initialize and script ActiveX controls not marked as safe property must be disallowed (Internet zone).

1 rule found Severity: Medium

Logo

Prevent per-user installation of ActiveX controls must be enabled.

1 rule found Severity: Medium

Logo

The Initialize and script ActiveX controls not marked as safe must be disallowed (Intranet Zone).

1 rule found Severity: Medium

Logo

The Initialize and script ActiveX controls not marked as safe must be disallowed (Trusted Sites Zone).

1 rule found Severity: Medium

Logo

The Initialize and script ActiveX controls not marked as safe property must be disallowed (Restricted Sites zone).

1 rule found Severity: Medium

Logo

ActiveX controls marked safe for scripting must be disallowed (Restricted Sites zone).

1 rule found Severity: Medium

Logo

Software must be disallowed to run or install with invalid signatures.

1 rule found Severity: Medium

Logo

ActiveX controls without prompt property must be used in approved domains only (Internet zone).

1 rule found Severity: Medium

Logo

ActiveX controls without prompt property must be used in approved domains only (Restricted Sites zone).

1 rule found Severity: Medium

Logo

Extensions that are approved for use must be allowlisted.

1 rule found Severity: Low

Logo

URLs must be allowlisted for Autoplay use.

1 rule found Severity: Medium

Logo

Macro storage must be in personal macro workbooks.

1 rule found Severity: Medium

Logo

Excel attachments opened from Outlook must be in Protected View.

1 rule found Severity: Medium

Logo

The Mainframe Product must prevent the automatic execution of mobile code in, at a minimum, office applications, browsers, email clients, mobile code run-time environments, and mobile agent systems.

1 rule found Severity: Medium

Logo

Automation Security to enforce macro level security in Office documents must be configured.

1 rule found Severity: Medium

Logo

The ability to create an online presentation programmatically must be disabled.

1 rule found Severity: Medium

Logo

Macros must be blocked from running in Access files from the Internet.

1 rule found Severity: Medium

Logo

The Macro Runtime Scan Scope must be enabled for all documents.

1 rule found Severity: Medium

Logo

Macros in all Office applications that are opened programmatically by another application must be opened based upon macro security level.

1 rule found Severity: Medium

Logo

User name and password must be disabled in all Office programs.

1 rule found Severity: Medium

Logo

Navigate URL must be enabled in all Office programs.

1 rule found Severity: Medium

Logo

The Save from URL feature must be enabled in all Office programs.

1 rule found Severity: Medium

Logo

Trusted Locations on the network must be disabled in Excel.

1 rule found Severity: Medium

Logo

Updating of links in Excel must be prompted and not automatic.

1 rule found Severity: Medium

Logo

Scan of encrypted macros in Excel Open XML workbooks must be enabled.

1 rule found Severity: Medium

Logo

Macros must be blocked from running in Excel files from the Internet.

1 rule found Severity: Medium

Logo

Files from unsafe locations must be opened in Excel in Protected View mode.

1 rule found Severity: Medium

Logo

Files failing file validation must be opened in Excel in Protected view mode and disallow edits.

1 rule found Severity: Medium

Logo

File attachments from Outlook must be opened in Excel in Protected mode.

1 rule found Severity: Medium

Logo

Scripts associated with public folders must be prevented from execution in Outlook.

1 rule found Severity: Medium

Logo

Scripts associated with shared folders must be prevented from execution in Outlook.

1 rule found Severity: Medium

Logo

Active X One-Off forms must only be enabled to load with Outlook Controls.

1 rule found Severity: Medium

Logo

Outlook must be configured to not run scripts in forms in which the script and the layout are contained within the message.

1 rule found Severity: Medium

Logo

Trusted Locations on the network must be disabled in Project.

1 rule found Severity: Medium

Logo

The ability to run programs from PowerPoint must be disabled.

1 rule found Severity: Medium

Logo

Encrypted macros in PowerPoint Open XML presentations must be scanned.

1 rule found Severity: Medium

Logo

File validation in PowerPoint must be enabled.

1 rule found Severity: Medium

Logo

Macros from the Internet must be blocked from running in PowerPoint.

1 rule found Severity: Medium

Logo

If file validation fails, files must be opened in Protected view in PowerPoint with ability to edit disabled.

1 rule found Severity: Medium

Logo

The use of network locations must be ignored in PowerPoint.

1 rule found Severity: Medium

Logo

Trusted Locations on the network must be disabled in Visio.

1 rule found Severity: Medium

Logo

Macros must be blocked from running in Visio files from the Internet.

1 rule found Severity: Medium

Logo

In Word, encrypted macros must be scanned.

1 rule found Severity: Medium

Logo

In Word, macros must be blocked from running, even if Enable all macros is selected in the Macro Settings section of the Trust Center.

1 rule found Severity: Medium

Logo

Trusted Locations on the network must be disabled in Word.

1 rule found Severity: Medium

Logo

The operating system must disable information system functionality that provides the capability for automatic execution of code on mobile devices without user direction.

2 rules found Severity: Medium

Logo

The system must restrict the ability of users to assume excessive privileges to members of a defined group and prevent unauthorized users from accessing administrative tools.

1 rule found Severity: Medium

Logo

Disabling of user name and password syntax from being used in URLs must be enforced in PowerPoint.

1 rule found Severity: Medium

Logo