DTOO122 – Excel – Open/Save actions for dBase III / IV files must be blocked.

Details

This policy setting allows for determining whether users can open, view, edit, or save Excel files with the format specified by the title.

Solution

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Excel 2010 -> Excel Options -> Security -> Trust Center -> File Block Settings ‘dBase III / IV files’ to ‘Enabled: Open/Save blocked, use open policy’.

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Excel_2010_V1R11_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Windows.

References

800-53|SC-18(1)
CAT|II
CCI|CCI-001662
Rule-ID|SV-34230r1_rule
STIG-ID|DTOO122
Vuln-ID|V-26595

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles