STIGQter STIGQter: STIG Summary: Windows Server 2008 R2 Member Server Security Technical Implementation Guide Version: 1 Release: 30 Benchmark Date: 26 Jul 2019: Attachments must be prevented from being downloaded from RSS feeds.

DISA Rule

SV-32416r2_rule

Vulnerability Number

V-15682

Group Title

RSS Attachment Downloads

Rule Version

5.231

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> RSS Feeds -> "Prevent downloading of enclosures" to "Enabled".

The policy name will be "Turn off downloading of enclosures" on systems with versions of Internet Explorer prior to IE 10.

Check Contents

If the following registry value does not exist or is not configured as specified, this is a finding:

Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: \SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds\

Value Name: DisableEnclosureDownload

Type: REG_DWORD
Value: 1

Vulnerability Number

V-15682

Documentable

False

Rule Version

5.231

Severity Override Guidance

If the following registry value does not exist or is not configured as specified, this is a finding:

Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: \SOFTWARE\Policies\Microsoft\Internet Explorer\Feeds\

Value Name: DisableEnclosureDownload

Type: REG_DWORD
Value: 1

Check Content Reference

M

Third-Party Tools

HK

Responsibility

System Administrator

Target Key

1823

Comments