Users must be notified if a web-based program attempts to install software.

An XCCDF Rule

Details
Profiles

Description

Web-based programs may attempt to install malicious software on a system. Ensuring users are notified if a web-based program attempts to install software allows them to refuse the installation.

ID: SV-224955r991589_rule
Version: WN16-CC-000470
Severity: Medium
References: CCI-000366
Updated: 23 days ago

Remediation Templates

The default behavior is for Internet Explorer to warn users and select whether to allow or refuse installation when a web-based program attempts to install software on the system.

If this needs to be corrected, configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Windows Installer >> "Prevent Internet Explorer security prompt for Windows Installer scripts" to "Not Configured" or "Disabled".

Users must be notified if a web-based program attempts to install software.

Description

Remediation Templates

A Manual Procedure