The Allow META REFRESH property must be disallowed (Restricted Sites zone).

An XCCDF Rule

Details
Profiles

Description

It is possible that users will unknowingly be redirected to a site hosting malicious content. 'Allow META REFRESH' must have a level of protection based upon the site being browsed. This policy setting allows you to manage whether a user's browser can be redirected to another web page if the author of the web page uses the Meta Refresh setting to redirect browsers to another web page.

ID: SV-223063r879887_rule
Version: DTBI123-IE11
Severity: Medium
References: CCI-000366
Updated: 5 days ago

Remediation Templates

Set the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Internet Explorer -> Internet Control Panel -> Security Page -> Restricted Sites Zone -> 'Allow META REFRESH' to 'Enabled', and select 'Disable' from the drop-down box.

The Allow META REFRESH property must be disallowed (Restricted Sites zone).

Description

Remediation Templates

A Manual Procedure