|MS12-051||Vulnerability in Microsoft Office for Mac Could Allow Elevation of Privilege (2721015)||Microsoft Office||Important||11-07-2012|
Brief overview of the risk:
This security update resolves one publicly disclosed vulnerability in Microsoft Office for Mac. The vulnerability could allow elevation of privilege if a malicious executable is placed on an affected system by an attacker.
Detailed Information on the risk:
An elevation of privilege vulnerability exists in the way that folder permissions are set in certain Microsoft Office for Mac installations. An attacker could place a malicious executable in the Microsoft Office 2011 folder. If a user later logs on and runs the malicious executable, attacker-provided code can be made to execute in the security context of the current user. If the user runs the malicious executable as an administrator, the attacker could take complete control over an affected system.Further information on this exploit is available at : MS12-051