Lucene search
This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.MACOS_MS18_APR_OFFICE.NASLHistoryApr 12, 2018 - 12:00 a.m.
Security Update for Microsoft Office (April 2018) (macOS)
2018-04-1200:00:00
This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.293 Low
EPSS
Percentile
96.9%
The Microsoft Office 2016 application installed on the remote macOS or Mac OS X host is missing a security update. It is, therefore, affected by a remote code execution vulnerability in Microsoft Excel software when the software fails to properly handle objects in memory.
An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. The security update addresses the vulnerability by correcting how Microsoft Excel handles objects in memory.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from the Microsoft Security Updates API. The text
# itself is copyright (C) Microsoft Corporation.
#
include("compat.inc");
if (description)
{
script_id(109016);
script_version("1.3");
script_cvs_date("Date: 2019/11/08");
script_cve_id("CVE-2018-1029");
script_name(english:"Security Update for Microsoft Office (April 2018) (macOS)");
script_summary(english:"Checks the version of Microsoft Office.");
script_set_attribute(attribute:"synopsis", value:
"An application installed on the remote macOS or Mac OS X host is
affected by a remote code execution vulnerability.");
script_set_attribute(attribute:"description", value:
"The Microsoft Office 2016 application installed on the remote macOS
or Mac OS X host is missing a security update. It is, therefore,
affected by a remote code execution vulnerability in Microsoft Excel
software when the software fails to properly handle objects in memory.
An attacker who successfully exploited the vulnerability could run
arbitrary code in the context of the current user. The security update
addresses the vulnerability by correcting how Microsoft Excel handles
objects in memory.");
# https://support.office.com/en-us/article/release-notes-for-office-2016-for-mac-ed2da564-6d53-4542-9954-7e3209681a41?ui=en-US&rs=en-US&ad=US
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?f07d9218");
# https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-1029
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?6c1e305a");
script_set_attribute(attribute:"solution", value:
"Microsoft has released a set of patches for Microsoft Office 2016 for
Mac.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-1029");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/04/10");
script_set_attribute(attribute:"patch_publication_date", value:"2018/04/10");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/04/12");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x");
script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:office");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"MacOS X Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("macosx_office_installed.nbin");
script_require_keys("Host/MacOSX/Version");
script_require_ports("installed_sw/Office for Mac 2016 ", "installed_sw/Microsoft Excel");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("install_func.inc");
os = get_kb_item("Host/MacOSX/Version");
if (!os) audit(AUDIT_OS_NOT, "Mac OS X");
apps = make_list(
"Office for Mac 2016",
"Microsoft Excel"
);
report = "";
foreach app (apps)
{
installs = get_installs(app_name:app);
if (isnull(installs[1])) continue;
foreach install (installs[1])
{
version = install['version'];
app_label = app;
fix = NULL;
fix_disp = NULL;
if (version =~ "^16\.")
{
app_label += " for Mac 2016";
fix = '16.12.0';
fix_disp = '16.12 (18041000)';
}
if (fix && ver_compare(ver:version, fix:fix, strict:FALSE) < 0)
{
report +=
'\n Product : ' + app_label +
'\n Installed version : ' + version +
'\n Fixed version : ' + fix_disp;
fix_disp = '';
if (os =~ "^Mac OS X 10\.[0-9](\.|$)")
report += '\n Note : Update will require Mac OS X 10.10.0 or later.\n';
else report += '\n';
}
}
}
# Report findings.
if (!empty(report))
security_report_v4(severity:SECURITY_HOLE, port:0, extra:report);
else
audit(AUDIT_HOST_NOT, "affected");
Related
mskb
mskb
Description of the security update for Excel 2016: April 10, 2018
2018-04-10 07:00:00
Description of the security update for Excel Viewer 2007: April 10, 2018
2018-04-10 07:00:00
Description of the security update for Excel 2007: April 10, 2018
2018-04-10 07:00:00
mscve
mscve
Microsoft Excel Remote Code Execution Vulnerability
2018-04-10 07:00:00
nessus
nessus
Security Updates for Microsoft Office Viewer Products (April 2018)
2018-04-10 00:00:00
Security Updates for Microsoft Office Compatibility Products (April 2018)
2018-04-10 00:00:00
Security Updates for Microsoft Excel Products (April 2018)
2018-04-10 00:00:00
openvas
openvas
symantec
symantec
Microsoft Excel CVE-2018-1029 Remote Code Execution Vulnerability
2018-04-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Excel Remote Code Execution (CVE-2018-1029)
2018-04-10 00:00:00
prion
prion
Remote code execution
2018-04-12 01:29:00
Remote code execution
2018-04-12 01:29:00
Remote code execution
2018-04-12 01:29:00
nvd
nvd
cve
cve
cvelist
cvelist
kaspersky
kaspersky
KLA11225 Multiple vulnerabilities in Microsoft Office
2018-04-10 00:00:00
trendmicroblog
trendmicroblog
talosblog
talosblog
Microsoft Patch Tuesday - April 2018
2018-04-10 13:13:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.293 Low
EPSS
Percentile
96.9%
Related for MACOS_MS18_APR_OFFICE.NASL