STIGQter: STIG Summary: Mainframe Product Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

The Mainframe Product must block, quarantine, and/or alert system administrators when prohibited mobile code is identified.

DISA Rule

SV-82937r1_rule

Vulnerability Number

V-68447

Group Title

SRG-APP-000207-MFP-000278

Rule Version

SRG-APP-000207-MFP-000278

Severity

CAT II

CCI(s)

• CCI-001662 - The information system takes organization-defined corrective action when organization-defined unacceptable mobile code is identified.

Weight

10

Fix Recommendation

Configure the Mainframe Product to block and/or alert system programmers and security administrators when prohibited mobile code is identified.

Check Contents

If the Mainframe Product has no function for the use of mobile code, this is not applicable.

Examine installation and configuration settings.

If the Mainframe Product does not block and/or alert system programmers and security administrators when prohibited mobile code is identified, this is a finding.

Vulnerability Number

V-68447

Documentable

False

Rule Version

SRG-APP-000207-MFP-000278

Severity Override Guidance

If the Mainframe Product has no function for the use of mobile code, this is not applicable.

Examine installation and configuration settings.

If the Mainframe Product does not block and/or alert system programmers and security administrators when prohibited mobile code is identified, this is a finding.

Check Content Reference

M

Target Key

3061

Comments