Hide mechanisms to remove zone informationID: oval:org.secpod.oval:def:36528 | Date: (C)2016-08-05 (M)2022-12-02 |
Class: COMPLIANCE | Family: windows |
This policy setting allows you to manage whether users can manually remove the zone information from saved file attachments by clicking the Unblock button in the file's property sheet or by using a check box in the security warning dialog. Removing the zone information allows users to open potentially dangerous file attachments that Windows has blocked users from opening.
If you enable this policy setting, Windows hides the check box and Unblock button.
If you disable this policy setting, Windows shows the check box and Unblock button.
If you do not configure this policy setting, Windows hides the check box and Unblock button.
Counter Measure:
Configure the Hide mechanisms to remove zone information setting to Enabled.
Potential Impact:
Users who have a legitimate need to remove zone information from files will not be able to do so.
Fix:
(1) GPO: User Configuration\Administrative Templates\Windows Components\Attachment Manager\Hide mechanisms to remove zone information
(2) REG: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments!HideZoneInfoOnProperties
(3) WMI: ###
Platform: |
Microsoft Windows 10 |