Zone information must be preserved when saving attachments.
An XCCDF Rule
Description
Attachments from outside sources may contain malicious code. Preserving zone of origin (Internet, intranet, local, restricted) information on file attachments allows Windows to determine risk.
- ID
- SV-225069r991589_rule
- Version
- WN16-UC-000030
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
The default behavior is for Windows to mark file attachments with their zone information.
If this needs to be corrected, configure the policy value for User Configuration >> Administrative Templates >> Windows Components >> Attachment Manager >> "Do not preserve zone information in file attachments" to "Not Configured" or "Disabled".