Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1894

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2012-1894
Last Modified 06 Mar 2013 11:54:07
Published 10 Jul 2012 05:55:06
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2012-1894

Summary

Microsoft Office for Mac 2011 uses world-writable permissions for the "Applications/Microsoft Office 2011/" directory and certain other directories, which allows local users to gain privileges by placing a Trojan horse executable file in one of these directories, aka "Office for Mac Improper Folder Permissions Vulnerability."

Vulnerable Systems

Application

  • Microsoft Office 2011


References

MS - MS12-051

CERT - TA12-192A

Related Patches

MS12-051 2721015 Microsoft Office 2011 for Mac Update 14.2.3 (Rev 2)


Last Updated: 27 May 2016 10:42:32