Adobe Reader DC must enable Protected View.

An XCCDF Rule

Details
Profiles

Description

A threat to users of Adobe Reader DC is opening a PDF file that contains malicious executable content. Protected view restricts Adobe Reader DC functionality, within a sandbox, when a PDF is opened from an untrusted source. This isolation of the PDFs reduces the risk of security breaches in areas outside the sandbox. Satisfies: SRG-APP-000112, SRG-APP-000206, SRG-APP-000207, SRG-APP-000209, SRG-APP-000210

ID: SV-213171r395811_rule
Version: ARDC-CN-000020
Severity: Medium
References: CCI-001166 CCI-001169 CCI-001170 CCI-001662 CCI-001695
Updated: 5 days ago

Remediation Templates

Configure the following registry value:

Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: \Software\Policies\Adobe\Acrobat Reader\DC\FeatureLockDown

Value Name: iProtectedViewType: REG_DWORD
Value: 2

Adobe Reader DC must enable Protected View.

Description

Remediation Templates

A Manual Procedure