Configure the "internet explorer processes (MIME sniffing)" setting.

Back

CONTROL ID
04349

CONTROL TYPE
Configuration

CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS

This Control directly supports the implied Control(s):

Configure Internet Browser security options according to organizational standards., CC ID: 02166

There are no implementation support Controls.

SELECTED AUTHORITY DOCUMENTS COMPLIED WITH

MIME sniffing determines the type of data (text, executable, etc.) being sent to the computer. This setting controls if Internet Explorer MIME sniffing will prevent a file from being promoted to a dangerous file type. The Internet Explorer Processes (MIME Sniffing) setting should be Enabled. (Pg 86, Microsoft Windows Vista Security Guide Appendix A: Security Group Policy Settings)
The "Mime Sniffing Safety Feature: Internet Explorer Processes" machine setting should be configured correctly. Technical Mechanisms: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Mime Sniffing Safety Feature\Internet Explorer Proces… (CCE-10635-1, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
The "Mime Sniffing Safety Feature: Internet Explorer Processes" current user setting should be configured correctly. Technical Mechanisms: User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Mime Sniffing Safety Feature\Internet Explorer Processes HKEY… (CCE-16367-5, Common Configuration Enumeration List, Combined XML: Microsoft Internet Explorer 8, 5.20130214)
The "Internet Explorer Processes (MIME Sniffing)" setting should be configured correctly. (oval:gov.nist.fdcc.ie7:def:317, FDCC Windows IE7 SCAP content using OVAL (fdcc-ie7-oval.xml, fdcc-ie7-patches.xml), Version 5.4)
Internet Explorer Processes - Mime Sniffing Safety Feature - Local Computer (IEProcesses_MimeSniffingSafetyFeature_LocalComputer, NIST SCAP Microsoft Internet Explorer Version 7 (fdcc-ie7-xccdf.xml), FDCC IE7 (1.2) SCAP Content - OVAL 5.4)
MIME sniffing is the process of examining the content of a MIME file to determine its context - whether it is a data file, an executable file, or some other type of file. (xccdf_gov.nist_rule_IEProcesses_MimeSniffingSafetyFeature_LocalComputer, oval:gov.nist.USGCB.ie7:def:317, oval:gov.nist.USGCB.ie7:tst:3435, oval:gov.nist.USGCB.ie7:obj:83, oval:gov.nist.USGCB.ie7:ste:3572, USGCB: Guidance for Securing Microsoft Internet Explorer 7, v1.2.3.1)
MIME sniffing is the process of examining the content of a MIME file to determine its context - whether it is a data file, an executable file, or some other type of file. (xccdf_gov.nist_rule_IEProcesses_MimeSniffingSafetyFeature_LocalComputer, oval:gov.nist.USGCB.ie7:def:317, oval:gov.nist.USGCB.ie7:tst:3628, oval:gov.nist.USGCB.ie7:obj:147, oval:gov.nist.USGCB.ie7:ste:3529, USGCB: Guidance for Securing Microsoft Internet Explorer 7, v1.2.3.1)
MIME sniffing determines the type of data (text, executable, etc.) being sent to the computer. This setting controls if Internet Explorer MIME sniffing will prevent a file from being promoted to a dangerous file type. The Internet Explorer Processes (MIME Sniffing) setting should be Enabled. (Pg 94, NSA Guide to Security Microsoft Windows XP)