STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to STIGs

Microsoft PowerPoint 2016 Security Technical Implementation Guide

Version

V2R1

Release Date

Nov 25, 2025

SCAP Benchmark ID

Microsoft_PowerPoint_2016

Total Checks

38

Tags

other
CAT I: 1CAT II: 37CAT III: 0

This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.

Export CKLExport CSVExport JSONDownload STIG ZIP

Checks (38)

V-238054MEDIUMDisabling of user name and password syntax from being used in URLs must be enforced in PowerPoint.V-238055MEDIUMBlocking as default file block opening behavior must be enforced.V-238056MEDIUMThe Internet Explorer Bind to Object functionality must be enabled in PowerPoint.V-238057MEDIUMThe Saved from URL mark must be selected to enforce Internet zone processing in PowerPoint.V-238058MEDIUMConfiguration for file validation must be enforced.V-238059MEDIUMFiles from the Internet zone must be opened in Protected View.V-238060MEDIUMNavigation to URLs embedded in Office products must be blocked in PowerPoint.V-238061MEDIUMScripted Window Security must be enforced in PowerPoint.V-238062MEDIUMAdd-on Management functionality must be allowed in PowerPoint.V-238063MEDIUMAdd-ins to Office applications must be signed by a Trusted Publisher.V-238064MEDIUMLinks that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint.V-238065MEDIUMTrust Bar Notifications for unsigned application add-ins must be blocked.V-238066MEDIUMFile Downloads must be configured for proper restrictions in PowerPoint.V-238067MEDIUMAll automatic loading from trusted locations must be disabled.V-238068MEDIUMDisallowance of trusted locations on the network must be enforced.V-238069MEDIUMThe Save commands default file format must be configured.V-238070MEDIUMThe scanning of encrypted macros in open XML documents must be enforced.V-238071MEDIUMTrust access for VBA must be disallowed.V-238072MEDIUMProtection from zone elevation must be enforced in PowerPoint.V-238073MEDIUMActiveX Installs must be configured for proper restriction in PowerPoint.V-238074MEDIUMFiles in unsafe locations must be opened in Protected View.V-238075MEDIUMThe ability to run programs from a PowerPoint presentation must be disallowed.V-238076MEDIUMDocument behavior if file validation fails must be set.V-238077MEDIUMAttachments opened from Outlook must be in Protected View.V-238078MEDIUMWarning Bar settings for VBA macros must be configured.V-238079MEDIUMDisabling of user name and password syntax from being used in URLs must be enforced in PowerPoint Viewer.V-238080MEDIUMThe Internet Explorer Bind to Object functionality must be enabled in PowerPoint Viewer.V-238081MEDIUMThe Saved from URL mark must be selected to enforce Internet zone processing in PowerPoint Viewer.V-238082MEDIUMNavigation to URLs embedded in Office products must be blocked in PowerPoint Viewer.V-238083MEDIUMScripted Window Security must be enforced in PowerPoint Viewer.V-238084MEDIUMAdd-on Management functionality must be allowed in PowerPoint Viewer.V-238085MEDIUMLinks that invoke instances of Internet Explorer from within an Office product must be blocked in PowerPoint Viewer.V-238086MEDIUMFile Downloads must be configured for proper restrictions in PowerPoint Viewer.V-238087MEDIUMProtection from zone elevation must be enforced in PowerPoint Viewer.V-238088MEDIUMActiveX Installs must be configured for proper restriction in PowerPoint Viewer.V-238089MEDIUMMacros must be blocked from running in Office files from the Internet.V-238090MEDIUMFiles on local Intranet UNC must be opened in Protected View.V-279946HIGHThe version of PowerPoint running on the system must be a supported version.