III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000210
<GroupDescription></GroupDescription>Group -
The Initialize and script ActiveX controls not marked as safe must be disallowed (Trusted Sites Zone).
<VulnDiscussion>ActiveX controls that are not marked safe for scripting should not be executed. Although this is not a complete security meas...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Run once selection for running outdated ActiveX controls must be disabled.
<VulnDiscussion>This feature keeps ActiveX controls up to date and helps make them safer to use in Internet Explorer. Many ActiveX controls a...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Enabling outdated ActiveX controls for Internet Explorer must be blocked.
<VulnDiscussion>This feature keeps ActiveX controls up to date and helps make them safer to use in Internet Explorer. Many ActiveX controls a...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Use of the Tabular Data Control (TDC) ActiveX control must be disabled for the Internet Zone.
<VulnDiscussion>This policy setting determines whether users can run the Tabular Data Control (TDC) ActiveX control, based on security zone. ...Rule Medium Severity -
SRG-APP-000209
<GroupDescription></GroupDescription>Group -
The Download signed ActiveX controls property must be disallowed (Restricted Sites zone).
<VulnDiscussion>ActiveX controls can contain potentially malicious code and must only be allowed to be downloaded from trusted sites. Signed ...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Use of the Tabular Data Control (TDC) ActiveX control must be disabled for the Restricted Sites Zone.
<VulnDiscussion>This policy setting determines whether users can run the Tabular Data Control (TDC) ActiveX control, based on security zone. ...Rule Medium Severity -
SRG-APP-000209
<GroupDescription></GroupDescription>Group -
VBScript must not be allowed to run in Internet Explorer (Internet zone).
<VulnDiscussion>This policy setting allows the management of whether VBScript can be run on pages from the specified zone in Internet Explore...Rule Medium Severity -
SRG-APP-000209
<GroupDescription></GroupDescription>Group -
The Download unsigned ActiveX controls property must be disallowed (Restricted Sites zone).
<VulnDiscussion>Unsigned code is potentially harmful, especially when coming from an untrusted zone. ActiveX controls can contain potentially...Rule Medium Severity -
SRG-APP-000209
<GroupDescription></GroupDescription>Group -
VBScript must not be allowed to run in Internet Explorer (Restricted Sites zone).
<VulnDiscussion>This policy setting allows the management of whether VBScript can be run on pages from the specified zone in Internet Explore...Rule Medium Severity -
SRG-APP-000266
<GroupDescription></GroupDescription>Group -
Internet Explorer Development Tools Must Be Disabled.
<VulnDiscussion>While the risk associated with browser development tools is more related to the proper design of a web application, a risk ve...Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.