Skip to content

Microsoft Excel 2013 STIG

Rules, Groups, and Values defined within the XCCDF Benchmark

  • DTOO288 - Files in unsafe locations

    <GroupDescription></GroupDescription>
    Group
  • Files in unsafe locations must be opened in Protected View.

    &lt;VulnDiscussion&gt;This policy setting determines whether files located in unsafe locations will open in Protected View. If unsafe locations hav...
    Rule Medium Severity
  • DTOO292 - Set document behavior

    <GroupDescription></GroupDescription>
    Group
  • Document behavior if file validation fails must be set.

    &lt;VulnDiscussion&gt;This policy key controls how Office documents should be handled when failing file validation. By requiring such documents to ...
    Rule Medium Severity
  • DTOO293 - Turn off Protected View for attachments

    <GroupDescription></GroupDescription>
    Group
  • Excel attachments opened from Outlook must be in Protected View.

    &lt;VulnDiscussion&gt;This policy setting allows for determining whether Excel files in Outlook attachments open in Protected View. If enabling thi...
    Rule Medium Severity
  • DTOO418 - Disable WEBSERVICE functions

    <GroupDescription></GroupDescription>
    Group
  • WEBSERVICE functions must be disabled.

    &lt;VulnDiscussion&gt;The WEBSERVICE function option, when used in an Excel spreadsheet, returns data from a web service on the Internet or Intrane...
    Rule Medium Severity
  • DTOO419 - Disallow corrupt workbook options

    <GroupDescription></GroupDescription>
    Group
  • Corrupt workbook options must be disallowed.

    &lt;VulnDiscussion&gt;This setting controls whether Excel presents users with a list of data extraction options before beginning an Open and Repair...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules