Capacity
CCI-001662
Take organization-defined corrective action when organization-defined unacceptable mobile code is identified.
1
Rule
Severity: Medium
Adobe Reader DC must enable Enhanced Security in a Standalone Application.
1
Rule
Severity: Medium
Adobe Reader DC must enable Enhanced Security in a Browser.
1
Rule
Severity: Medium
Adobe Reader DC must enable Protected Mode.
1
Rule
Severity: Medium
Adobe Reader DC must enable Protected View.
1
Rule
Severity: Medium
Adobe Reader DC must Block Websites.
1
Rule
Severity: Medium
Adobe Reader DC must block access to Unknown Websites.
1
Rule
Severity: Medium
Adobe Reader DC must prevent opening files other than PDF or FDF.
1
Rule
Severity: Medium
Adobe Reader DC must block Flash Content.
2
Rule
Severity: Medium
The IDPS must block any prohibited mobile code at the enclave boundary when it is detected.
2
Rule
Severity: Medium
The Juniper Networks SRX Series Gateway IDPS must block any prohibited mobile code at the enclave boundary when it is detected.
2
Rule
Severity: Medium
The Mainframe Product must block, quarantine, and/or alert system administrators when prohibited mobile code is identified.
16
Rule
Severity: Medium
Add-on Management functionality must be allowed.
10
Rule
Severity: Medium
Links that invoke instances of Internet Explorer from within an Office product must be blocked.
5
Rule
Severity: Medium
Blocking as default file block opening behavior must be enforced.
9
Rule
Severity: Medium
Files from the Internet zone must be opened in Protected View.
1
Rule
Severity: Medium
Add-on Management functionality must be allowed in PowerPoint.
1
Rule
Severity: Medium
Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint.
1
Rule
Severity: Medium
Add-on Management functionality must be allowed in PowerPoint Viewer.
1
Rule
Severity: Medium
Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint Viewer.
5
Rule
Severity: Medium
Blocking as default file block opening behavior must be enforced.
3
Rule
Severity: Medium
Word 2 and earlier binary documents and templates must be blocked for open/save.
1
Rule
Severity: Medium
Word 2000 binary documents and templates must be configured to edit in protected view.
3
Rule
Severity: Medium
Word 6.0 binary documents and templates must be configured for block open/save actions.
1
Rule
Severity: Medium
Word 95 binary documents and templates must be configured to edit in protected view.
1
Rule
Severity: Medium
Word 97 binary documents and templates must be configured to edit in protected view.
1
Rule
Severity: Medium
Word XP binary documents and templates must be configured to edit in protected view.
11
Rule
Severity: Medium
Links that invoke instances of IE from within an Office product must be blocked.
7
Rule
Severity: Medium
Links that invoke instances of Internet Explorer from within an Office product must be blocked.
1
Rule
Severity: Medium
Microsoft Defender AV must be configured for automatic remediation action to be taken for threat alert level Severe.
1
Rule
Severity: Medium
Microsoft Defender AV must be configured for automatic remediation action to be taken for threat alert level High.
1
Rule
Severity: Medium
Microsoft Defender AV must be configured for automatic remediation action to be taken for threat alert level Medium.
1
Rule
Severity: Medium
Microsoft Defender AV must be configured for automatic remediation action to be taken for threat alert level Low.
4
Rule
Severity: Medium
Open/Save actions for Excel 4 macrosheets and add-in files must be blocked.
4
Rule
Severity: Medium
Open/Save actions for Excel 4 workbooks must be blocked.
4
Rule
Severity: Medium
Open/Save actions for Excel 4 worksheets must be blocked.
2
Rule
Severity: Medium
Actions for Excel 95 workbooks must be configured to edit in Protected View.
2
Rule
Severity: Medium
Actions for Excel 95-97 workbooks and templates must be configured to edit in Protected View.
3
Rule
Severity: Medium
Open/Save actions for Dif and Sylk files must be blocked.
3
Rule
Severity: Medium
Open/Save actions for Excel 2 macrosheets and add-in files must be blocked.
4
Rule
Severity: Medium
Open/Save actions for Excel 2 worksheets must be blocked.
3
Rule
Severity: Medium
Open/Save actions for Excel 3 macrosheets and add-in files must be blocked.
4
Rule
Severity: Medium
Open/Save actions for Excel 3 worksheets must be blocked.
2
Rule
Severity: Medium
Open/Save actions for web pages and Excel 2003 XML spreadsheets must be blocked.
4
Rule
Severity: Medium
Open/Save actions for dBase III / IV files must be blocked.
1
Rule
Severity: Medium
Actions for Excel 95 workbooks must be configured to edit in protected view.
1
Rule
Severity: Medium
Actions for Excel 95-97 workbooks and templates must be configured to edit in protected view.
1
Rule
Severity: Low
Open/Save actions for Web pages and Excel 2003 XML spreadsheets must be blocked.
12
Rule
Severity: Medium
Add-on Management functionality must be allowed.
1
Rule
Severity: Medium
Open/Save actions for Dif and Sylk files must be blocked.
1
Rule
Severity: Medium
Open/Save actions for Excel 2 macrosheets and add-in files must be blocked.
1
Rule
Severity: Medium
Open/Save actions for Excel 3 macrosheets and add-in files must be blocked.
1
Rule
Severity: Medium
Actions for Excel 95 workbooks must be configured to edit in Protected View.
1
Rule
Severity: Medium
Actions for Excel 95-97 workbooks and templates must be configured to edit in Protected View.
1
Rule
Severity: Low
Open/Save actions for web pages and Excel 2003 XML spreadsheets must be blocked.
1
Rule
Severity: Medium
WEBSERVICE functions must be disabled.
1
Rule
Severity: Medium
Corrupt workbook options must be disallowed.
2
Rule
Severity: Medium
WEBSERVICE functions must be disabled.
2
Rule
Severity: Medium
Corrupt workbook options must be disallowed.
2
Rule
Severity: Medium
Trust Bar notifications for Security messages must be enforced.
4
Rule
Severity: Medium
Load controls in forms3 must be disabled from loading.
2
Rule
Severity: Medium
Action to demote an EMail Level 1 attachment to Level 2 must be configured.
1
Rule
Severity: Medium
The prompt to display level 1 attachments must be disallowed when closing an item.
1
Rule
Severity: Medium
The prompt to display level 1 attachments must be disallowed when sending an item.
2
Rule
Severity: Medium
The ability to display level 1 attachments must be disallowed.
2
Rule
Severity: Medium
Level 1 file extensions must be blocked and not removed.
2
Rule
Severity: Medium
Level 2 file extensions must be blocked and not removed.
2
Rule
Severity: Medium
Always warn on untrusted macros must be enforced.
2
Rule
Severity: Medium
Trust Bar notifications for Security messages must be enforced.
1
Rule
Severity: Medium
Level 1 attachment close behaviors must be configured.
1
Rule
Severity: Medium
Prompting behavior for Level 1 attachments on sending must be configured.
1
Rule
Severity: Medium
The ability to display level 1 attachments must be disallowed.
1
Rule
Severity: Medium
Level 1 file extensions must be blocked and not removed.
1
Rule
Severity: Medium
Level 2 file extensions must be blocked and not removed.
1
Rule
Severity: Medium
Always warn on untrusted macros must be enforced.
1
Rule
Severity: Medium
Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint.
1
Rule
Severity: Medium
Add-on Management functionality must be allowed in PowerPoint.
1
Rule
Severity: Medium
Files from the Internet zone must be opened in Protected View.
1
Rule
Severity: Medium
File Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint Viewer.
3
Rule
Severity: Medium
Fatally corrupt files must be blocked from opening.
1
Rule
Severity: Medium
Add-on Management functionality must be allowed in PowerPoint Viewer.
1
Rule
Severity: Medium
Word 2000 binary documents and templates must be configured to edit in protected view.
1
Rule
Severity: Medium
Word 95 binary documents and templates must be configured to edit in protected view.
2
Rule
Severity: Medium
Word 97 binary documents and templates must be configured to edit in protected view.
2
Rule
Severity: Medium
Word XP binary documents and templates must be configured to edit in protected view.
1
Rule
Severity: Medium
Word 2000 binary documents and templates must be configured to edit in protected view.
1
Rule
Severity: Medium
Word 95 binary documents and templates must be configured to edit in protected view.
2
Rule
Severity: Medium
The TPS must block any prohibited mobile code at the enclave boundary when it is detected.
2
Rule
Severity: Medium
The Cisco ASA must block any prohibited mobile code at the enclave boundary when it is detected.
1
Rule
Severity: Medium
Anti-Malware programs against ActiveX controls must be run for the Intranet zone.
1
Rule
Severity: Medium
Anti-Malware programs against ActiveX controls must be run for the Trusted Sites zone.
1
Rule
Severity: Medium
Anti-Malware programs against ActiveX controls must be run for the Internet zone.
1
Rule
Severity: Medium
Anti-Malware programs against ActiveX controls must be run for the Restricted Sites zone.
1
Rule
Severity: Medium
Anti-Malware programs against ActiveX controls must be run for the Local Machine zone.
3
Rule
Severity: Medium
Allowing Trusted Locations on the network must be disabled in Access.
3
Rule
Severity: Medium
The Office client must be prevented from polling the SharePoint Server for published links.
3
Rule
Severity: Medium
The load of controls in Forms3 must be blocked.
3
Rule
Severity: Medium
Add-on Management must be enabled for all Office 365 ProPlus programs.
3
Rule
Severity: Medium
The Information Bar must be enabled in all Office programs.
3
Rule
Severity: Medium
Dynamic Data Exchange (DDE) server launch in Excel must be blocked.
3
Rule
Severity: Medium
Dynamic Data Exchange (DDE) server lookup in Excel must be blocked.
3
Rule
Severity: Medium
Open/save of dBase III / IV format files must be blocked.
3
Rule
Severity: Medium
Open/save of Dif and Sylk format files must be blocked.
3
Rule
Severity: Medium
Open/save of Excel 2 macrosheets and add-in files must be blocked.
3
Rule
Severity: Medium
Open/save of Excel 2 worksheets must be blocked.
3
Rule
Severity: Medium
Open/save of Excel 3 macrosheets and add-in files must be blocked.
3
Rule
Severity: Medium
Open/save of Excel 3 worksheets must be blocked.
3
Rule
Severity: Medium
Open/save of Excel 4 macrosheets and add-in files must be blocked.
3
Rule
Severity: Medium
Open/save of Excel 4 workbooks must be blocked.
3
Rule
Severity: Medium
Open/save of Excel 4 worksheets must be blocked.
3
Rule
Severity: Medium
Open/save of Excel 95 workbooks must be blocked.
3
Rule
Severity: Medium
Open/save of Excel 95-97 workbooks and templates must be blocked.
3
Rule
Severity: Medium
The default file block behavior must be set to not open blocked files in Excel.
3
Rule
Severity: Medium
Open/save of Web pages and Excel 2003 XML spreadsheets must be blocked.
3
Rule
Severity: Medium
Extraction options must be blocked when opening corrupt Excel workbooks.
3
Rule
Severity: Medium
WEBSERVICE Function Notification in Excel must be configured to disable all, with notifications.
3
Rule
Severity: Medium
Untrusted Microsoft Query files must be blocked from opening in Excel.
3
Rule
Severity: Medium
Untrusted database files must be opened in Excel in Protected View mode.
3
Rule
Severity: Medium
Files from Internet zone must be opened in Excel in Protected View mode.
3
Rule
Severity: Medium
The warning about invalid digital signatures must be enabled to warn Outlook users.
3
Rule
Severity: Medium
The ability to demote attachments from Level 2 to Level 1 must be disabled.
3
Rule
Severity: Medium
The display of Level 1 attachments must be disabled in Outlook.
3
Rule
Severity: Medium
Level 1 file attachments must be blocked from being delivered.
3
Rule
Severity: Medium
Level 2 file attachments must be blocked from being delivered.
3
Rule
Severity: Medium
The Security Level for macros in Outlook must be configured to Warn for signed and disable unsigned.
3
Rule
Severity: Medium
Open/Save of PowerPoint 97-2003 presentations, shows, templates, and add-in files must be blocked.
3
Rule
Severity: Medium
The default file block behavior must be set to not open blocked files in PowerPoint.
3
Rule
Severity: Medium
Files downloaded from the Internet must be opened in Protected view in PowerPoint.
3
Rule
Severity: Medium
PowerPoint attachments opened from Outlook must be in Protected View.
3
Rule
Severity: Medium
Files in unsafe locations must be opened in Protected view in PowerPoint.
3
Rule
Severity: Medium
Publisher must be configured to prompt the user when another application programmatically opens a macro.
3
Rule
Severity: Medium
Visio 2000-2002 Binary Drawings, Templates and Stencils must be blocked.
3
Rule
Severity: Medium
Visio 2003-2010 Binary Drawings, Templates and Stencils must be blocked.
3
Rule
Severity: Medium
Visio 5.0 or earlier Binary Drawings, Templates and Stencils must be blocked.
3
Rule
Severity: Medium
Files downloaded from the Internet must be opened in Protected view in Word.
3
Rule
Severity: Medium
Files located in unsafe locations must be opened in Protected view in Word.
3
Rule
Severity: Medium
If file validation fails, files must be opened in Protected view in Word with ability to edit disabled.
3
Rule
Severity: Medium
Word attachments opened from Outlook must be in Protected View.
3
Rule
Severity: Medium
The default file block behavior must be set to not open blocked files in Word.
3
Rule
Severity: Medium
Open/Save of Word 2 and earlier binary documents and templates must be blocked.
3
Rule
Severity: Medium
Open/Save of Word 2000 binary documents and templates must be blocked.
3
Rule
Severity: Medium
Open/Save of Word 2003 binary documents and templates must be blocked.
3
Rule
Severity: Medium
Open/Save of Word 2007 and later binary documents and templates must be blocked.
3
Rule
Severity: Medium
Open/Save of Word 6.0 binary documents and templates must be blocked.
3
Rule
Severity: Medium
Open/Save of Word 95 binary documents and templates must be blocked.
3
Rule
Severity: Medium
Open/Save of Word 97 binary documents and templates must be blocked.
3
Rule
Severity: Medium
Open/Save of Word XP binary documents and templates must be blocked.
2
Rule
Severity: Medium
The Palo Alto Networks security platform must detect and deny any prohibited mobile or otherwise malicious code at the enclave boundary.
Patternfly
PatternFly elements
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Modules