Microsoft Lync for Mac CVE-2018-8474 Security Bypass Vulnerability

2018-09-11T00:00:00
ID SMNTC-105268
Type symantec
Reporter Symantec Security Response
Modified 2018-09-11T00:00:00

Description

Description

Microsoft Lync for Mac is prone to a security-bypass vulnerability. An attacker can leverage this issue to bypass certain security restrictions and perform unauthorized actions.

Technologies Affected

  • Microsoft Lync for Mac 2011

Recommendations

Deploy network intrusion detection systems to monitor network traffic for malicious activity.
Deploy NIDS to monitor network traffic for signs of anomalous or suspicious activity. This may indicate exploit attempts or activity that results from a successful exploit.

Run all software as a nonprivileged user with minimal access rights.
Ensure that all nonadministrative tasks, such as browsing the web and reading email, are performed as an unprivileged user with minimal access rights.

Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com