MS12-029 / MS12-030: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2680352 / 2663830) (Mac OS X)

high Nessus Plugin ID 59046

Synopsis

An application installed on the remote Mac OS X host is affected by multiple remote code execution vulnerabilities.

Description

The remote Mac OS X host is running a version of Microsoft Office that is affected by the following vulnerabilities :

- A memory corruption vulnerability could be triggered when parsing specially crafted RTF-formatted data.
(CVE-2012-0183)

- Several memory corruption vulnerabilities could be triggered when reading a specially crafted Excel file.
(CVE-2012-0141 / CVE-2012-0142 / CVE-2012-0143 / CVE-2012-0184)

- A record parsing mismatch exists when opening a specially crafted Excel file. (CVE-2012-1847)

If a remote attacker can trick a user into opening a malicious file using the affected install, these vulnerabilities could be leveraged to execute arbitrary code subject to the user's privileges.

Solution

Microsoft has released patches for Office for Mac 2011 and Office 2008 for Mac.

See Also

http://www.zerodayinitiative.com/advisories/ZDI-12-157/

http://seclists.org/fulldisclosure/2012/Aug/279

http://technet.microsoft.com/en-us/security/bulletin/ms12-029

http://technet.microsoft.com/en-us/security/bulletin/ms12-030

Plugin Details

Severity: High

ID: 59046

File Name: macosx_ms_office_may2012.nasl

Version: 1.21

Type: local

Agent: macosx

Published: 5/9/2012

Updated: 11/27/2023

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.6

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 8.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:microsoft:office:2008::mac, cpe:/a:microsoft:office:2011::mac

Required KB Items: Host/local_checks_enabled, Host/MacOSX/Version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 5/8/2012

Vulnerability Publication Date: 5/8/2012

Reference Information

CVE: CVE-2012-0141, CVE-2012-0142, CVE-2012-0143, CVE-2012-0183, CVE-2012-0184, CVE-2012-1847

BID: 53342, 53344, 53373, 53374, 53375, 53379

MSFT: MS12-029, MS12-030

MSKB: 2665346, 2665351