Microsoft PowerPoint 2013 STIG
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Protection from zone elevation must be enforced in PowerPoint.
Internet Explorer places restrictions on each web page users can use the browser to open. Web pages on a user's local computer have the fewest security restrictions and reside in the Local Machine ...Rule Medium Severity -
File Downloads must be configured for proper restrictions in PowerPoint.
Disabling this setting allows websites to present file download prompts via code without the user specifically initiating the download. User preferences may also allow the download to occur withou...Rule Medium Severity -
Configuration for file validation must be enforced.
Office File Validation helps detect and prevent a kind of exploit known as a file format attack or file fuzzing attack. File format attacks exploit the integrity of a file. They occur when someone ...Rule Medium Severity -
Attachments opened from Outlook must be in Protected View.
This policy setting allows for determining if PowerPoint files in Outlook attachments open in Protected View. If enabling this policy setting, Outlook attachments do not open in Protected View. If ...Rule Medium Severity -
Disabling of user name and password syntax from being used in URLs must be enforced in PowerPoint Viewer.
The Uniform Resource Locator (URL) standard allows user authentication to be included in URL strings in the form http://username:password@example.com. A malicious user might use this URL syntax to ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules