Skip to content
Log In

Microsoft Word 2013 STIG

Rules, Groups, and Values defined within the XCCDF Benchmark

  • DTOO129 - Block Pop-Ups

    Group
    Show

  • Links that invoke instances of Internet Explorer from within an Office product must be blocked.

    The Pop-up Blocker feature in Internet Explorer can be used to block most unwanted pop-up and pop-under windows from appearing. This functionality can be controlled separately for instances of Inte...
    Rule Medium Severity
    Show

  • DTOO131 - Trust Bar Notifications

    Group
    Show

  • Trust Bar Notifications for unsigned application add-ins must be blocked.

    If an application is configured to require all add-ins to be signed by a trusted publisher, any unsigned add-ins the application loads will be disabled and the application will display the Trust Ba...
    Rule Medium Severity
    Show

  • DTOO133-Disable all trusted locations

    Group
    Show

  • All automatic loading from trusted locations must be disabled.

    Trusted locations specified in the Trust Center are used to define file locations assumed to be safe. Content, code, and add-ins are allowed to load from trusted locations with a minimal amount of ...
    Rule Medium Severity
    Show

  • DTOO142 - Force Scan Encr. Macros in open XML

    Group
    Show

  • DTOO134 - Trusted locations on computer

    Group
    Show

  • DTOO139 - Save files default format

    Group
    Show

  • The Save commands default file format must be configured.

    When users create new document files, Word 2013 saves them in the new Word 2013 .docx format. Ensure this setting is enabled to specify that all new files are created in Word 2013. If a new docum...
    Rule Medium Severity
    Show

  • DTOO146-Disable Trust access to VB Project Macros

    Group
    Show

  • Trust access for VBA must be disallowed.

    VSTO projects require access to the Visual Basic for Applications project system in Excel, PowerPoint, and Word, even though the projects do not use Visual Basic for Applications. Design-time suppo...
    Rule Medium Severity
    Show

  • DTOO304 - VBA Macro Warning settings

    Group
    Show

  • Warning Bar settings for VBA macros must be configured.

    When users open files containing VBA macros, applications open the files with the macros disabled and display the Trust Bar with a warning that macros are present and have been disabled. Users may ...
    Rule Medium Severity
    Show

  • DTOO302 - Don't update Links at Open

    Group
    Show

  • The automatically update links feature must be disabled.

    When users open documents Word automatically updates any links to external content, such as graphics, Excel worksheets, and PowerPoint slides. To disable automatic updating, the user can click the ...
    Rule Medium Severity
    Show

  • DTOO303 - Warn before printing

    Group
    Show

  • DTOO209 - Zone Elevation Protection

    Group
    Show

  • Protection from zone elevation must be enforced.

    Internet Explorer places restrictions on each web page users can use the browser to open. Web pages on a user's local computer have the fewest security restrictions and reside in the Local Machine ...
    Rule Medium Severity
    Show

  • DTOO211 - Restrict ActiveX Install

    Group
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules