Adobe Reader DC must enable Protected Mode.

An XCCDF Rule

Details
Profiles

Description

A threat to users of Adobe Reader DC is opening a PDF file that contains malicious executable content. Protected mode provides a sandbox capability that prevents malicious PDF files from launching arbitrary executable files, writing to system directories or the Windows registry. This isolation of the PDFs reduces the risk of security breaches in areas outside the sandbox. Satisfies: SRG-APP-000112, SRG-APP-000206, SRG-APP-000207, SRG-APP-000209, SRG-APP-000210

ID: SV-213170r395811_rule
Version: ARDC-CN-000015
Severity: Medium
References: CCI-001166 CCI-001169 CCI-001170 CCI-001662 CCI-001695
Updated: 5 days ago

Remediation Templates

Configure the following registry value:

Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: \Software\Policies\Adobe\Acrobat Reader\DC\FeatureLockDown

Value Name: bProtectedModeType: REG_DWORD
Value: 1

Adobe Reader DC must enable Protected Mode.

Description

Remediation Templates

A Manual Procedure