FFOX-00-000006 – Firefox must be configured to not automatically execute or download MIME types that are not authorized for auto-download.

Details

Some files can be downloaded or execute without user interaction. This setting ensures these files are not downloaded and executed.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Remove any unauthorized extensions from the auto-download list.

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MOZ_Firefox_V6R1_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Information Integrity.This control applies to the following type of system Windows.

References

800-53|SI-3c.1.
CAT|II
CCI|CCI-001242
Rule-ID|SV-251550r807122_rule
STIG-ID|FFOX-00-000006
Vuln-ID|V-251550

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles