MS15-046: Vulnerability in Microsoft Office Could Allow Remote Code Execution (3057181)
High Nessus Plugin ID 83415
SynopsisAn application installed on the remote Mac OS X host is affected by a remote code execution vulnerability.
DescriptionThe remote Mac OS X host has a version of Microsoft Word installed that is affected by a remote code execution vulnerability due to improper handling of objects in memory. A remote attacker can exploit this vulnerability by convincing a user to open a specially crafted file, resulting in execution of arbitrary code in the context of the current user.
SolutionMicrosoft has released a patch for Office for Mac 2011.
Note that Microsoft has re-released the patch to update the version of Microsoft Office for Mac to version 14.5.1 to address a potential issue with Microsoft Outlook for Mac. Microsoft recommends that this update is applied.