Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.812729
Category:Mac OS X Local Security Checks
Title:Microsoft Office Multiple Remote Code Execution Vulnerabilities - Jan18 (Mac OS X)
Summary:This host is missing an important security; update for Microsoft Office 2016 on Mac OSX according to Microsoft security; update January 2018
Description:Summary:
This host is missing an important security
update for Microsoft Office 2016 on Mac OSX according to Microsoft security
update January 2018

Vulnerability Insight:
Multiple flaws are due to:

- Microsoft office software fails to properly handle objects in memory.

- Microsoft outlook improperly parses specially crafted email messages.

Vulnerability Impact:
Successful exploitation will allow attackers
to run arbitrary code in the context of the current user. If the current user
is logged on with administrative user rights, an attacker could take control
of the affected system.

Affected Software/OS:
Microsoft Office 2016 on Mac OS X.

Solution:
Upgrade to Microsoft Office 2016 version
16.9.0 (Build 18011602) or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: BugTraq ID: 102381
BugTraq ID: 102373
BugTraq ID: 102375
Common Vulnerability Exposure (CVE) ID: CVE-2018-0792
http://www.securityfocus.com/bid/102381
http://www.securitytracker.com/id/1040153
Common Vulnerability Exposure (CVE) ID: CVE-2018-0794
http://www.securityfocus.com/bid/102373
Common Vulnerability Exposure (CVE) ID: CVE-2018-0793
http://www.securityfocus.com/bid/102375
http://www.securitytracker.com/id/1040154
Common Vulnerability Exposure (CVE) ID: CVE-2018-0819
BugTraq ID: 102464
http://www.securityfocus.com/bid/102464
CopyrightCopyright (C) 2018 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.