Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.804427
Category:Mac OS X Local Security Checks
Title:Microsoft Office Remote Code Execution Vulnerabilities-2949660 (Mac OS X)
Summary:This host is missing a critical security update according to; Microsoft Bulletin MS14-017.
Description:Summary:
This host is missing a critical security update according to
Microsoft Bulletin MS14-017.

Vulnerability Insight:
Multiple flaws are due to an error within,

- Microsoft Word when handling certain RTF-formatted data can be exploited to
corrupt memory.

- Microsoft Office File Format Converter when handling certain files can be
exploited to corrupt memory.

- Microsoft Word when handling certain files can be exploited to cause a
stack-based buffer overflow.

Vulnerability Impact:
Successful exploitation will allow remote attackers to execute the arbitrary
code, cause memory corruption and compromise the system.

Affected Software/OS:
Microsoft Office 2011 on Mac OS X.

Solution:
Apply the patch from the referenced advisory.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: BugTraq ID: 66385
BugTraq ID: 66614
BugTraq ID: 66629
Common Vulnerability Exposure (CVE) ID: CVE-2014-1757
CERT/CC vulnerability note: VU#882841
http://www.kb.cert.org/vuls/id/882841
Microsoft Security Bulletin: MS14-017
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-017
Common Vulnerability Exposure (CVE) ID: CVE-2014-1758
Common Vulnerability Exposure (CVE) ID: CVE-2014-1761
CopyrightCopyright (C) 2014 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.