MS12-029 / MS12-030: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2680352 / 2663830) (Mac OS X)

High Nessus Plugin ID 59046


An application installed on the remote Mac OS X host is affected by multiple remote code execution vulnerabilities.


The remote Mac OS X host is running a version of Microsoft Office that is affected by the following vulnerabilities :

- A memory corruption vulnerability could be triggered when parsing specially crafted RTF-formatted data.

- Several memory corruption vulnerabilities could be triggered when reading a specially crafted Excel file.
(CVE-2012-0141 / CVE-2012-0142 / CVE-2012-0143 / CVE-2012-0184)

- A record parsing mismatch exists when opening a specially crafted Excel file. (CVE-2012-1847)

If a remote attacker can trick a user into opening a malicious file using the affected install, these vulnerabilities could be leveraged to execute arbitrary code subject to the user's privileges.


Microsoft has released patches for Office for Mac 2011 and Office 2008 for Mac.

See Also

Plugin Details

Severity: High

ID: 59046

File Name: macosx_ms_office_may2012.nasl

Version: 1.16

Type: local

Agent: macosx

Published: 2012/05/09

Modified: 2017/08/30

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 7.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:microsoft:office:2008::mac, cpe:/a:microsoft:office:2011::mac

Required KB Items: Host/local_checks_enabled, Host/MacOSX/Version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2012/05/08

Vulnerability Publication Date: 2012/05/08

Reference Information

CVE: CVE-2012-0141, CVE-2012-0142, CVE-2012-0143, CVE-2012-0183, CVE-2012-0184, CVE-2012-1847

BID: 53342, 53344, 53373, 53374, 53375, 53379

OSVDB: 81724, 81725, 81726, 81727, 81728, 81732

MSFT: MS12-029, MS12-030

MSKB: 2665346, 2665351