News

Critical Flaws in Mac Versions of IE, Office Patched

Enterprises using Mac clients with Microsoft desktop software got a major new patch tossed their way this week. Microsoft released a cumulative patch for its Apple products that also fixes two critical new security vulnerabilities.

Affected products are Macintosh versions of Internet Explorer 5.1, Outlook Express 5.0, Office v. X, Office 2001 and PowerPoint 98.

The critical new vulnerabilities can both allow an attacker to execute code. One is a buffer overrun related to the handling of an HTML element -- a flaw affecting IE and Office. With the vulnerability, an attacker can cause code of his choice to run as if it were the user.

The second vulnerability can allow local AppleScripts to be invoked by a Web page. Locally stored AppleScripts can be invoked as if they had been launched by the user.

The cumulative patch is available at www.microsoft.com/technet/security/bulletin/ms02-019.asp.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • Windows 10 Mobile To Fall Out of Support in December

    Microsoft will end support for the Windows 10 Mobile operating system on Dec. 10, 2019, according to an announcement.

  • Get More Out of Your Outlook Inbox with TakeNote

    Brien comes across a handy, but imperfect, feature in Outlook that lets you annotate specific e-mails. Its provenance is something of a mystery, though.

  • Microsoft Resumes Rerelease of Windows 10 Version 1809

    Microsoft on Wednesday once more resumed its general rollout of the Windows 10 version 1809 upgrade, also known as the "October 2018 Update."

  • Microsoft Ups Its Windows 10 App Compatibility Assurances

    Microsoft gave assurances this week that organizations adopting Windows 10 likely won't face application compatibility issues.

comments powered by Disqus
Most   Popular

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.