STIGQter STIGQter: STIG Summary: Microsoft PowerPoint 2013 STIG Version: 1 Release: 6 Benchmark Date: 27 Apr 2018:

The opening of pre-release versions of file formats new to PowerPoint 2013 through the Compatibility Pack for Office 2013 and PowerPoint 2013 Converter must be blocked.

DISA Rule

SV-53513r1_rule

Vulnerability Number

V-17322

Group Title

DTOO210 - Block opening of pre-release versions

Rule Version

DTOO210

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Set the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2013 -> Office 2013 Converters -> "Block opening of pre-release versions of file formats new to PowerPoint 2013 through the Compatibility Pack for Office 2013 and PowerPoint 2013 Converter" to "Enabled".

Check Contents

Verify the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2013 -> Office 2013 Converters -> "Block opening of pre-release versions of file formats new to PowerPoint 2013 through the Compatibility Pack for Office 2013 and PowerPoint 2013 Converter" is set to "Enabled".

Procedure: Use the Windows Registry Editor to navigate to the following key:

HKCU\software\policies\Microsoft\office\15.0\PowerPoint\security\fileblock

Criteria: If the value powerpoint12betafilesfromconverters is REG_DWORD = 1, this is not a finding.

Vulnerability Number

V-17322

Documentable

False

Rule Version

DTOO210

Severity Override Guidance

Verify the policy value for User Configuration -> Administrative Templates -> Microsoft Office 2013 -> Office 2013 Converters -> "Block opening of pre-release versions of file formats new to PowerPoint 2013 through the Compatibility Pack for Office 2013 and PowerPoint 2013 Converter" is set to "Enabled".

Procedure: Use the Windows Registry Editor to navigate to the following key:

HKCU\software\policies\Microsoft\office\15.0\PowerPoint\security\fileblock

Criteria: If the value powerpoint12betafilesfromconverters is REG_DWORD = 1, this is not a finding.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

2483

Comments