This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.
An application installed on the remote Mac OS X host is affected by
multiple remote code execution vulnerabilities.
The remote Mac OS X host has a version of Microsoft Office installed
that is affected by multiple remote code execution vulnerabilities :
- Multiple remote code execution vulnerabilities exist due
to improper handling of objects in memory. A remote
attacker can exploit these vulnerabilities by convincing
a user to open a specially crafted Office file,
resulting in the execution of arbitrary code in the
context of the current user. (CVE-2015-2468,
- A remote code execution vulnerability exists when Office
decreases an integer value beyond its intended minimum
value. A remote attacker can exploit this vulnerability
by convincing a user to open a specially crafted Office
file, resulting in the execution of arbitrary code in
the context of the current user. (CVE-2015-2470)
See also :
Microsoft has released a patch for Office for Mac 2011.
Risk factor :
High / CVSS Base Score : 9.3
Family: MacOS X Local Security Checks
Nessus Plugin ID: 85349 ()
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now