Users must be notified if a web-based program attempts to install software.

An XCCDF Rule

Details
Profiles

Description

Web-based programs may attempt to install malicious software on a system. Ensuring users are notified if a web-based program attempts to install software allows them to refuse the installation.

ID: SV-253412r991589_rule
Version: WN11-CC-000320
Severity: Medium
References: CCI-000366
Updated: 5 days ago

Remediation Templates

The default behavior is for Internet Explorer to warn users and select whether to allow or refuse installation when a web-based program attempts to install software on the system.

To correct this, configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Windows Installer >> "Prevent Internet Explorer security prompt for Windows Installer scripts" to "Not Configured" or "Disabled".

Users must be notified if a web-based program attempts to install software.

Description

Remediation Templates

A Manual Procedure