Microsoft Word 2013 STIG
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Add-on Management functionality must be allowed.
Internet Explorer add-ons are pieces of code, run in Internet Explorer, to provide additional functionality. Rogue add-ons may contain viruses or other malicious code. Disabling or not configuring ...Rule Medium Severity -
Add-ins to Office applications must be signed by a Trusted Publisher.
Office 2013 applications do not check the digital signature on application add-ins before opening them. Disabling or not configuring this setting may allow an application to load a dangerous add-i...Rule Medium Severity -
Configuration for file validation must be enforced.
Office File Validation helps detect and prevent a kind of exploit known as a file format attack or file fuzzing attack. File format attacks exploit the integrity of a file. They occur when someone ...Rule Medium Severity -
Document behavior if file validation fails must be set.
This policy key controls the behavior of how Office documents should be handled when failing file validation. By requiring such documents to be opened in Protected View, any potentially malicious c...Rule Medium Severity -
Word 2 and earlier binary documents and templates must be blocked for open/save.
This setting specifies whether users can open, view, edit, or save Word files saved in the specified format. Enabling block of the specified format mitigates zero-day security attacks (which are at...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules