CCI-001662
Take organization-defined corrective action when organization-defined unacceptable mobile code is identified.
1 rule found Severity: Medium
9 rules found Severity: Medium
Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint.
1 rule found Severity: Medium
Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint Viewer.
1 rule found Severity: Medium
3 rules found Severity: Medium
1 rule found Severity: Medium
3 rules found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
11 rules found Severity: Medium
7 rules found Severity: Medium
Microsoft Defender AV must be configured for automatic remediation action to be taken for threat alert level Severe.
1 rule found Severity: Medium
Microsoft Defender AV must be configured for automatic remediation action to be taken for threat alert level High.
1 rule found Severity: Medium
Microsoft Defender AV must be configured for automatic remediation action to be taken for threat alert level Medium.
1 rule found Severity: Medium
Microsoft Defender AV must be configured for automatic remediation action to be taken for threat alert level Low.
1 rule found Severity: Medium
2 rules found Severity: Medium
2 rules found Severity: Medium
3 rules found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Low
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Low
2 rules found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint.
1 rule found Severity: Medium
File Links that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint Viewer.
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
2 rules found Severity: Medium
2 rules found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
The Juniper Networks SRX Series Gateway IDPS must block any prohibited mobile code at the enclave boundary when it is detected.
1 rule found Severity: Medium
The Mainframe Product must block, quarantine, and/or alert system administrators when prohibited mobile code is identified.
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
The Security Level for macros in Outlook must be configured to Warn for signed and disable unsigned.
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
Publisher must be configured to prompt the user when another application programmatically opens a macro.
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
If file validation fails, files must be opened in Protected view in Word with ability to edit disabled.
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium