Test ID:	1.3.6.1.4.1.25623.1.0.813379
Category:	Mac OS X Local Security Checks
Title:	Microsoft Office Multiple Remote Code Execution Vulnerabilities (May 2018) - Mac OS X
Summary:	This host is missing an important security; update for Microsoft Office 2016 on Mac OS X according to Microsoft security; update May 2018
Description:	Summary: This host is missing an important security update for Microsoft Office 2016 on Mac OS X according to Microsoft security update May 2018 Vulnerability Insight: Multiple flaws are due to: - Microsoft PowerPoint software fails to properly validate XML content. - Microsoft Excel software fails to properly handle objects in memory. Vulnerability Impact: Successful exploitation will allow attackers to run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then: - install programs - view, change, or delete data - create new accounts with full user rights. Affected Software/OS: Microsoft Office 2016 on Mac OS X. Solution: Upgrade to Microsoft Office 2016 version 16.13.0 (Build 18051301) or later. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2018-8147 BugTraq ID: 104035 http://www.securityfocus.com/bid/104035 http://www.securitytracker.com/id/1040857 Common Vulnerability Exposure (CVE) ID: CVE-2018-8162 BugTraq ID: 104058 http://www.securityfocus.com/bid/104058 Common Vulnerability Exposure (CVE) ID: CVE-2018-8176 BugTraq ID: 104184 http://www.securityfocus.com/bid/104184 http://www.securitytracker.com/id/1040937
Copyright	Copyright (C) 2018 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.