<< Back
CVE Number Vulnerability Product Severity Date
MS12-051 Vulnerability in Microsoft Office for Mac Could Allow Elevation of Privilege (2721015) Microsoft Office Important 11-07-2012

Technical Information

Brief overview of the risk:
This security update resolves one publicly disclosed vulnerability in Microsoft Office for Mac. The vulnerability could allow elevation of privilege if a malicious executable is placed on an affected system by an attacker.
Detailed Information on the risk:
An elevation of privilege vulnerability exists in the way that folder permissions are set in certain Microsoft Office for Mac installations. An attacker could place a malicious executable in the Microsoft Office 2011 folder. If a user later logs on and runs the malicious executable, attacker-provided code can be made to execute in the security context of the current user. If the user runs the malicious executable as an administrator, the attacker could take complete control over an affected system.Further information on this exploit is available at : MS12-051

Affected Software

Microsoft Office for Mac 2011