MS13-051: Vulnerability in Microsoft Office Could Allow Remote Code Execution (2839571) (Mac OS X)
High Nessus Plugin ID 66868
SynopsisAn application installed on the remote Mac OS X host is affected by a remote code execution vulnerability.
DescriptionThe remote Mac OS X host has a version of Microsoft Office for Mac that contains a buffer overflow vulnerability because certain Microsoft Office components for processing PNG files do not properly handle memory allocation.
If an attacker can trick a user on the affected host into opening a specially crafted Office file, this issue could be leveraged to execute arbitrary code subject to the user's privileges.
SolutionMicrosoft has released a patch for Office for Mac 2011.