[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96078

 
 

909

 
 

78009

 
 

109

Paid content will be excluded from the download.


Download | Alert*


oval:gov.nist.USGCB.ie7:def:24599
The "Download signed ActiveX controls" setting should be configured correctly for the Locked-Down Internet Zone.

oval:gov.nist.USGCB.ie7:def:1119
Computer Configuration\Network\Internet Explorer\Internet Control Panel\Security Page\Internet Zone\Turn Off First- Run Opt-In

oval:gov.nist.USGCB.ie7:def:400
This policy setting allows you to manage whether users receive a dialog requesting permission for active content on a CD to run. If you enable this policy setting, active content on a CD will run without a prompt.

oval:gov.nist.USGCB.ie7:def:884
Internet Explorer uses Multipurpose Internet Mail Extensions (MIME) data to determine file handling procedures for files received through a Web server. This policy setting determines whether Internet Explorer requires that all file-type information provided by Web servers be consistent. For example, ...

oval:gov.nist.USGCB.ie7:def:524
This policy setting allows you to manage whether pages of the zone may download HTML fonts. If you enable this policy setting, HTML fonts can be downloaded automatically.

oval:gov.nist.USGCB.ie7:def:1113
This policy setting determines whether users will be prompted for non user-initiated file downloads. Regardless of this setting, users will receive file download dialogs for user-initiated downloads.

oval:gov.nist.USGCB.ie7:def:1234
This policy setting allows you to manage restrictions on script-initiated pop-up windows and windows that include the title and status bars. If you enable this policy setting, Windows Restrictions security will not apply in this zone.

oval:gov.nist.USGCB.ie7:def:9998
Computer-wide, rather than per-user, assignment of sites to zones for Internet Explorer should be enabled or disabled as appropriate.

oval:gov.nist.USGCB.ie7:def:62199
The "Turn on Protected Mode" setting should be configured correctly for the Restricted Sites Zone.

oval:gov.nist.USGCB.ie7:def:757
This setting specifies the number of days that Internet Explorer keeps track of the pages viewed in the History List. The delete Browsing History option can be accessed using Tools, Internet Options and General tab.

oval:gov.nist.USGCB.ie7:def:1019
This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone. If you enable this policy, users can download signed controls without user intervention.

oval:gov.nist.USGCB.ie7:def:1379
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually.

oval:gov.nist.USGCB.ie7:def:620
Internet Explorer places restrictions on each Web page it opens that are dependent upon the location of the Web page (such as Internet zone, Intranet zone, or Local Machine zone).

oval:gov.nist.USGCB.ie7:def:621
Computer Configuration\Network\Internet Explorer\Internet Control Panel\Security Page\Restricted Sites Zone\Turn Off First- Run Opt-In

oval:gov.nist.USGCB.ie7:def:501
This policy setting allows the user to enable a phishing filter that will warn if the Web site being visited is known for fraudulent attempts to gather personal information through "phishing."

oval:gov.nist.USGCB.ie7:def:506
This policy setting allows you to manage whether scripts can perform a clipboard operation (for example, cut, copy, and paste) in a specified region. If you enable this policy setting, a script can perform a clipboard operation.

oval:gov.nist.USGCB.ie7:def:617
The MK Protocol Security Restriction policy setting reduces attack surface area by blocking the seldom used MK protocol. Some older Web applications use the MK protocol to retrieve information from compressed files.

oval:gov.nist.USGCB.ie7:def:611
This policy setting allows you to manage whether applications may be run and files may be downloaded from an IFRAME reference in the HTML of the pages in this zone.

oval:gov.nist.USGCB.ie7:def:612
This policy setting allows you to manage the opening of sub-frames and access of applications across different domains. If you enable this policy setting, users can open sub-frames from other domains and access applications from other domains.

oval:gov.nist.USGCB.ie7:def:172
This policy setting allows you to manage whether Internet Explorer will check revocation status of servers' certificates.

oval:gov.nist.USGCB.ie7:def:293
This policy setting allows you to manage whether script code on pages in the zone is run. If you enable this policy setting, script code on pages in the zone can run automatically.

oval:gov.nist.USGCB.ie7:def:290
This policy setting allows you to manage software channel permissions. If you enable this policy setting, you can choose the following options from the drop-down box.

oval:gov.nist.USGCB.ie7:def:326
This policy setting allows you to manage settings for logon options. If you enable this policy setting, you can choose from the following logon options.

oval:gov.nist.USGCB.ie7:def:329
This policy setting allows you to manage whether .NET Framework components that are not signed with Authenticode can be executed from Internet Explorer.

oval:gov.nist.USGCB.ie7:def:680
Microsoft ActiveX controls and file downloads often have digital signatures attached that vouch for both the file's integrity and the identity of the signer (creator) of the software. Such signatures help ensure that unmodified.

oval:gov.nist.USGCB.ie7:def:320
In certain circumstances, Web sites can initiate file download prompts without interaction from users. This technique can allow Web sites to put unauthorized files on users' hard drives if they click the wrong button and accept the download.

oval:gov.nist.USGCB.ie7:def:314
This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items.

oval:gov.nist.USGCB.ie7:def:1322
This policy setting prevents performance of the First Run Customize settings ability and controls what the user will see when they launch Internet Explorer for the first time after installation of Internet Explorer.

oval:gov.nist.USGCB.ie7:def:559
This policy setting controls whether URLs representing UNCs are mapped into the local Intranet security zone. If you enable this policy setting, all network paths are mapped into the Intranet Zone.

oval:gov.nist.USGCB.ie7:def:317
MIME sniffing is the process of examining the content of a MIME file to determine its context - whether it is a data file, an executable file, or some other type of file.

oval:gov.nist.USGCB.ie7:def:31098
This policy setting controls whether a page may control embedded WebBrowser Controls via script

oval:gov.nist.USGCB.ie7:def:31099
This policy setting controls whether or not the local path information will be sent when uploading a file via a HTML form.

oval:gov.nist.USGCB.ie7:def:674
This policy setting allows you to manage whether Internet Explorer can access data from another security zone using the Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO).

oval:gov.nist.USGCB.ie7:def:1699
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually.

oval:gov.nist.USGCB.ie7:def:1218
This policy setting allows you to manage whether a user's browser can be redirected to another Web page if the author of the Web page uses the Meta Refresh setting (tag) to redirect browsers to another Web page.

oval:gov.nist.USGCB.ie7:def:1219
This policy setting allows you to manage whether Web sites from less privileged zones, such as Restricted Sites, can navigate into this zone.

oval:gov.nist.USGCB.ie7:def:302
This policy setting allows you to manage software channel permissions. If you enable this policy setting, you can choose the following options from the drop-down box.

oval:gov.nist.USGCB.ie7:def:1694
The Do not allow users to enable or disable add-ons policy setting allows you to manage whether users have the ability to allow or deny add-ons through Manage Add-ons.

oval:gov.nist.USGCB.ie7:def:31061
This policy setting allows you to manage whether scriptlets can be allowed. If you enable this policy setting, users will be able to run scriptlets. If you disable this policy setting, users will not be able to run scriptlets.

oval:gov.nist.USGCB.ie7:def:300
This policy setting allows you to manage the preservation of information in the browser's history, in favorites, in an XML store, or directly within a Web page saved to disk.

oval:gov.nist.USGCB.ie7:def:1108
This policy setting allows you to manage the preservation of information in the browser's history, in favorites, in an XML store, or directly within a Web page saved to disk.

oval:gov.nist.USGCB.ie7:def:1229
This policy setting allows you to manage the opening of sub-frames and access of applications across different domains. If you enable this policy setting, users can open sub-frames from other domains and access applications from other domains.

oval:gov.nist.USGCB.ie7:def:1109
This policy setting allows you to manage whether pages of the zone may download HTML fonts. If you enable this policy setting, HTML fonts can be downloaded automatically.

oval:gov.nist.USGCB.ie7:def:655
Internet Explorer treats as fatal any Secure Socket Layer/Transport Layer Security (SSL/TLS) certificate errors that interrupt navigation (such as "expired," "revoked," or "name mismatch" errors).

oval:gov.nist.USGCB.ie7:def:656
This policy setting allows you to manage whether Internet Explorer checks the Internet for newer versions.

oval:gov.nist.USGCB.ie7:def:1100
This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. If you enable this policy setting, most unwanted pop-up windows are prevented from appearing.

oval:gov.nist.USGCB.ie7:def:418
This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items.

oval:gov.nist.USGCB.ie7:def:652
This policy setting allows you to manage whether Internet Explorer can access data from another security zone using the Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO).

oval:gov.nist.USGCB.ie7:def:1753
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually.

oval:gov.nist.USGCB.ie7:def:247
This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items.

oval:gov.nist.USGCB.ie7:def:249
This policy setting allows you to manage whether scripts can perform a clipboard operation (for example, cut, copy, and paste) in a specified region. If you enable this policy setting, a script can perform a clipboard operation.

oval:gov.nist.USGCB.ie7:def:1199
This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone. If you enable this policy, users can download signed controls without user intervention.

oval:gov.nist.USGCB.ie7:def:240
These are eXtensible Application Markup Language (XAML) files. XAML is an XML-based declarative markup language commonly used for creating rich user interfaces and graphics that leverage the Windows Presentation Foundation.

oval:gov.nist.USGCB.ie7:def:1083
This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting, users can drag files or copy and paste files from this zone automatically.

oval:gov.nist.USGCB.ie7:def:242
These are browser-hosted, ClickOnce-deployed applications built using WinFX. These applications execute in a security sandbox and harness the power of the Windows Presentation Foundation platform for the Web.

oval:gov.nist.USGCB.ie7:def:365
This policy setting allows you to manage dynamic binary and script behaviors: components that encapsulate specific functionality for HTML elements to which they were attached. If you enable this policy setting, binary and script behaviors are available.

oval:gov.nist.USGCB.ie7:def:487
The Turn off Crash Detection policy setting allows you to manage the crash detection feature of add-on management in Internet Explorer. If you enable this policy setting, a crash in Internet Explorer will be similar to one on a computer running Windows XP.

oval:gov.nist.USGCB.ie7:def:245
This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items.

oval:gov.nist.USGCB.ie7:def:1404
The Security Zones: Do not allow users to change policies setting prevents users from changing security zone settings. A security zone is a group of Web sites with the same security level.

oval:gov.nist.USGCB.ie7:def:916
This policy setting turns off the Security Settings Check feature, which checks Internet Explorer security settings to determine when the settings put Internet Explorer at risk.

oval:gov.nist.USGCB.ie7:def:1883
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually.

oval:gov.nist.USGCB.ie7:def:1400
The Security Zones: Do not allow users to add/delete sites setting prevents users from adding or removing sites from security zones. A security zone is a group of Web sites with the same security level.

oval:gov.nist.USGCB.ie7:def:110
This policy setting allows you to manage whether Internet Explorer will launch COM add-ons known as browser helper objects, such as toolbars.

oval:gov.nist.USGCB.ie7:def:1419
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually.

oval:gov.nist.USGCB.ie7:def:589
This policy setting allows you to manage restrictions on script-initiated pop-up windows and windows that include the title and status bars. If you enable this policy setting, Windows Restrictions security will not apply in this zone.

oval:gov.nist.USGCB.ie7:def:226
This policy setting allows you to manage whether script is allowed to update the status bar within the zone. If you enable this policy setting, script is allowed to update the status bar.

oval:gov.nist.USGCB.ie7:def:31024
This policy setting allows you to manage whether script is allowed to update the status bar within the zone. If you enable this policy setting, script is allowed to update the status bar.

oval:gov.nist.USGCB.ie7:def:580
These are browser-hosted, ClickOnce-deployed applications built using WinFX. These applications execute in a security sandbox and harness the power of the Windows Presentation Foundation platform for the Web.

oval:gov.nist.USGCB.ie7:def:583
This policy setting prevents users from using the Reset Internet Explorer Settings feature. Reset Internet Explorer Settings will allow the users to reset all settings changed since install, delete browsing history and disable add-ons that are not preapproved.

oval:gov.nist.USGCB.ie7:def:223
This policy setting allows you to manage whether users can install Active Desktop items from this zone. The settings for this option are: If you enable this policy setting, users can install desktop items from this zone automatically.

oval:gov.nist.USGCB.ie7:def:465
Internet Explorer allows scripts to programmatically open, resize, and reposition various types of windows. Often, disreputable Web sites will resize windows to either hide other windows or force you to interact with a window that contains malicious code.

oval:gov.nist.USGCB.ie7:def:458
This policy setting prevents users from performing the "Delete Browsing History" action in Internet Explorer. If you enable this policy setting, users cannot perform the "Delete Browsing History" action in Internet Options for Internet Explorer 7.

oval:gov.nist.USGCB.ie7:def:31035
This policy setting allows you to manage whether .NET Framework components that are not signed with Authenticode can be executed from Internet Explorer.

oval:gov.nist.USGCB.ie7:def:338
Computer Configuration\Network\Internet Explorer\Internet Control Panel\Security Features\Enable Native XMLHttp Support

oval:gov.nist.USGCB.ie7:def:31036
This policy setting allows you to manage whether .NET Framework components that are signed with Authenticode can be executed from Internet Explorer.

oval:gov.nist.USGCB.ie7:def:1422
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually.

oval:gov.nist.USGCB.ie7:def:691
This policy setting allows you to manage settings for logon options. If you enable this policy setting, you can choose from the following logon options.

oval:gov.nist.USGCB.ie7:def:571
This policy setting allows you to manage whether ActiveX controls and plug-ins can be run on pages from the specified zone. If you enable this policy setting, controls and plug-ins can run without user intervention.

oval:gov.nist.USGCB.ie7:def:1153
This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items.

oval:gov.nist.USGCB.ie7:def:602
This policy setting allows you to manage whether an ActiveX control marked safe for scripting can interact with a script. If you enable this policy setting, script interaction can occur automatically without user intervention.

oval:gov.nist.USGCB.ie7:def:1277
Applies security zone information to all users of the same computer. A security zone is a group of Web sites with the same security level. If you enable this policy, changes that the user makes to a security zone will apply to all users of that computer.

oval:gov.nist.USGCB.ie7:def:1040
This policy setting allows you to manage ActiveX controls not marked as safe. If you enable this policy setting, ActiveX controls are run, loaded with parameters, and scripted without setting object safety for untrusted data or scripts.

oval:gov.nist.USGCB.ie7:def:280
This policy setting allows you to manage whether applets are exposed to scripts within the zone. If you enable this policy setting, scripts can access applets automatically without user intervention.

oval:gov.nist.USGCB.ie7:def:1285
This setting specifies to automatically detect the proxy server settings used to connect to the Internet and customize Internet Explorer.

oval:gov.nist.USGCB.ie7:def:1043
This policy setting allows you to manage whether scriptlets can be allowed. If you enable this policy setting, users will be able to run scriptlets. If you disable this policy setting, users will not be able to run scriptlets.

oval:gov.nist.USGCB.ie7:def:953
This policy setting allows you to manage MIME sniffing for file promotion from one type to another based on a MIME sniff. A MIME sniff is the recognition by Internet Explorer of the file type based on a bit signature.

oval:gov.nist.USGCB.ie7:def:1166
This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items.

oval:gov.nist.USGCB.ie7:def:715
This policy setting allows checking for updates for Internet Explorer from the specified URL, included by default in Internet Explorer.

oval:gov.nist.USGCB.ie7:def:273
This policy setting allows you to manage ActiveX controls not marked as safe. If you enable this policy setting, ActiveX controls are run, loaded with parameters, and scripted without setting object safety for untrusted data or scripts.

oval:gov.nist.USGCB.ie7:def:395
This policy setting allows you to manage whether Internet Explorer checks for digital signatures (which identifies the publisher of signed software and verifies it hasn't been modified or tampered with) on user computers before downloading executable programs.

oval:gov.nist.USGCB.ie7:def:274
This policy setting allows you to manage whether applications may be run and files may be downloaded from an IFRAME reference in the HTML of the pages in this zone.

oval:gov.nist.USGCB.ie7:def:1171
This policy setting prevents users from participating in the Customer Experience Improvement Program (CEIP).

oval:gov.nist.USGCB.ie7:def:275
These are eXtensible Application Markup Language (XAML) files. XAML is an XML-based declarative markup language commonly used for creating rich user interfaces and graphics that leverage the Windows Presentation Foundation.

oval:gov.nist.USGCB.ie7:def:276
This policy setting allows you to manage whether .NET Framework components that are signed with Authenticode can be executed from Internet Explorer.

oval:gov.nist.USGCB.ie7:def:391
This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone. Such code is potentially harmful, especially when coming from an untrusted zone.

oval:gov.nist.USGCB.ie7:def:706
This policy setting allows you to manage MIME sniffing for file promotion from one type to another based on a MIME sniff. A MIME sniff is the recognition by Internet Explorer of the file type based on a bit signature.

oval:gov.nist.USGCB.ie7:def:949
This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone. Such code is potentially harmful, especially when coming from an untrusted zone.

oval:gov.nist.USGCB.ie7:def:31105
This policy setting controls whether or not the 'Open File - Security Warning' prompt is shown when launching executables or other unsafe files.

oval:gov.nist.USGCB.ie7:def:1174
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually.

oval:gov.nist.USGCB.ie7:def:31108
The Restrict ActiveX Install\Internet Explorer Processes policy setting enables blocking of ActiveX control installation prompts for Internet Explorer processes.

oval:gov.nist.USGCB.ie7:def:1179
This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. If you enable this policy setting, most unwanted pop-up windows are prevented from appearing.

oval:gov.nist.USGCB.ie7:def:824
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually.

oval:gov.nist.USGCB.ie7:def:31103
This policy setting controls whether a page may control embedded WebBrowser Controls via script

oval:gov.nist.USGCB.ie7:def:31104
This policy setting controls whether or not the local path information will be sent when uploading a file via a HTML form.

oval:gov.nist.USGCB.ie7:def:383
This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items.

oval:gov.nist.USGCB.ie7:def:31100
This policy setting controls whether or not the 'Open File - Security Warning' prompt is shown when launching executables or other unsafe files.

oval:gov.nist.USGCB.ie7:def:265
This policy setting allows you to manage whether Web sites from less privileged zones, such as Restricted Sites, can navigate into this zone.

oval:gov.nist.USGCB.ie7:def:1183
This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items.

oval:gov.nist.USGCB.ie7:def:1181
The Make proxy settings per - machine (rather than per-user) setting ensures proxy settings for all users of the same computer are the same.

oval:gov.nist.USGCB.ie7:def:1986
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually.

oval:gov.nist.USGCB.ie7:def:111999
The "Turn on Protected Mode" setting should be configured correctly for the Internet Zone.

oval:gov.nist.USGCB.ie7:def:2039
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting, you can choose options from the drop-down box. Custom, to control permissions settings individually.

oval:gov.nist.USGCB.ie7:def:378
This policy setting allows you to manage whether script is allowed to update the status bar within the zone. If you enable this policy setting, script is allowed to update the status bar.

oval:gov.nist.USGCB.ie7:def:1187
This setting specifies the update check interval. The default value is 30 days. If you enable this policy setting, the user will not be able to configure the update check interval. You have to specify the update check interval.

oval:gov.nist.USGCB.ie7:def:1184
This policy setting allows you to manage whether file downloads are permitted from the zone. This option is determined by the zone of the page with the link causing the download, not the zone from which the file is delivered.

oval:gov.nist.USGCB.ie7:def:118399
The "Allow status bar updates via script" setting should be configured correctly for the Locked-Down Trusted Sites Zone.

oval:gov.nist.USGCB.ie7:def:251
This policy setting allows you to manage whether users can install Active Desktop items from this zone. The settings for this option are: If you enable this policy setting, users can install desktop items from this zone automatically.

oval:gov.nist.USGCB.ie7:def:252
This policy setting determines whether users will be prompted for non user-initiated file downloads. Regardless of this setting, users will receive file download dialogs for user-initiated downloads.

oval:gov.nist.USGCB.ie7:def:498
This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting, users can drag files or copy and paste files from this zone automatically.

oval:gov.nist.USGCB.ie7:def:6110
The "Turn off downloading of enclosures" setting should be configured correctly.

CPE    1
cpe:/a:microsoft:ie:7
CCE    124
CCE-4122-8
CCE-3201-1
CCE-4062-6
CCE-4001-4
...
*XCCDF
xccdf_gov.nist_benchmark_USGCB-ie7

© 2013 SecPod Technologies