Security Update for Microsoft Office (May 2017) (macOS)
High Nessus Plugin ID 100295
SynopsisAn application installed on the remote macOS or Mac OS X host is affected by a remote code execution vulnerability.
DescriptionThe Microsoft Office application installed on the remote macOS or Mac OS X host is missing a security update. It is, therefore, affected by a remote code execution vulnerability due to a failure to properly handle objects in memory. An unauthenticated, remote attacker can exploit this, by convincing a user to open a specially crafted Office document or visit a specially crafted website, to execute arbitrary code in the context of the current user.
SolutionMicrosoft has released patches for Microsoft Office for Mac 2011 and Microsoft Office 2016 for Mac.