MS17-014: Security Update for Microsoft Office (4013241) (macOS)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

An application installed on the remote macOS or Mac OS X host is
affected by multiple vulnerabilities.

Description :

The Microsoft Office application installed on the remote macOS or Mac
OS X host is missing a security update. It is, therefore, affected by
multiple vulnerabilities :

- Multiple remote code execution vulnerabilities exist
in Microsoft Office software due to improper handling of
objects in memory. An unauthenticated, remote attacker
can exploit these, by convincing a user to open a
specially crafted document file, to execute arbitrary
code in the context of the current user. (CVE-2017-0020,
CVE-2017-0030, CVE-2017-0031)

- An information disclosure vulnerability exists in
Microsoft Office due to improper disclosure of memory
contents. An unauthenticated, remote attacker can
exploit this to disclose sensitive system memory
information by convincing a user to open a specially
crafted document file. (CVE-2017-0027)

- A denial of service vulnerability exists in Microsoft
Office that allows an unauthenticated, remote attacker
to cause Office to stop responding by convincing a user
to open a specially crafted document file.
(CVE-2017-0029)

- An out-of-bounds read error exists in Microsoft Office
due to an uninitialized variable. A local attacker can
exploit this to disclose memory contents by opening a
specially crafted document file. (CVE-2017-0105)

- A flaw exists in Microsoft Lync for Mac due to improper
validation of X.509 certificates. A man-in-the-middle
attacker can exploit this, by spoofing a TLS/SSL server
via a certificate that appears valid, to disclose or
manipulate transmitted data. (CVE-2017-0129)

See also :

https://technet.microsoft.com/library/security/MS17-014

Solution :

Microsoft has released a set of patches for Microsoft Office for
Mac 2011, Microsoft Office 2016 for Mac, Microsoft Excel for Mac 2011,
Microsoft Excel 2016 for Mac, Microsoft Word for Mac 2011, and
Microsoft Lync for Mac 2011.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.9
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: MacOS X Local Security Checks

Nessus Plugin ID: 97739 ()

Bugtraq ID: 96043
96045
96050
96051
96052
96746
96752

CVE ID: CVE-2017-0020
CVE-2017-0027
CVE-2017-0029
CVE-2017-0030
CVE-2017-0031
CVE-2017-0105
CVE-2017-0129

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now