STIGQter STIGQter: STIG Summary: Mozilla Firefox Security Technical Implementation Guide Version: 5 Release: 1 Benchmark Date: 22 Jan 2021:

FireFox is configured to allow JavaScript to move or resize windows.

DISA Rule

SV-223164r612236_rule

Vulnerability Number

V-223164

Group Title

SRG-APP-000141

Rule Version

DTBF181

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Ensure the preference "dom.disable_window_move_resize" is set and locked to the value of “true”.

Check Contents

In About:Config, verify that the preference name “dom.disable_window_move_resize" is set and locked to “true”.

Criteria: If the parameter is set incorrectly, then this is a finding. If the setting is not locked, then this is a finding.

Vulnerability Number

V-223164

Documentable

False

Rule Version

DTBF181

Severity Override Guidance

In About:Config, verify that the preference name “dom.disable_window_move_resize" is set and locked to “true”.

Criteria: If the parameter is set incorrectly, then this is a finding. If the setting is not locked, then this is a finding.

Check Content Reference

M

Target Key

4097

Comments