Security Update for Microsoft Office (October 2018) (macOS)
High Nessus Plugin ID 118309
SynopsisAn application installed on the remote macOS or Mac OS X host is affected by remote code execution vulnerability.
DescriptionThe Microsoft Office application installed on the remote macOS or Mac OS X host is missing a security update. It is, therefore, affected by the following vulnerability:
- A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system. To exploit the vulnerability, a user would have to open a specially crafted file. The security update addresses the vulnerability by correcting how Microsoft Graphics Components handle objects in memory.(CVE-2018-8432)
SolutionMicrosoft has released a set of patches for Microsoft Office for Mac.