OFFICIAL SECURITY BLOG

We’ve moved! You can now read the latest and greatest on Mac adware and malware at Malwarebytes.

Microsoft Office 2011 update addresses vulnerability

Published June 11th, 2013 at 9:29 PM EDT , modified June 11th, 2013 at 9:29 PM EDT

Microsoft issued an update for Office 2011 today that could lead to code execution by simply opening a maliciously-crafted Office document. As with today’s Flash update, there’s no currently known Mac malware taking advantage of this, but there’s no sense letting it appear before you take action. If you’re using Office 2011, update it immediately!

Tags: ,

6 Comments

  • Douglas Bushey says:

    Thanks so much for the great site!
    Updating now, I do with microsoft would offer daily auto-updates, but always staying in the know is half the battle.

    • Douglas Bushey says:

      Ha, ha, well since there is no edit, I just now realized the last auto updater switched and now offers ‘Weekly’, ‘Monthly’ AND ‘Daily’.

      Ah well, hopefully this will help others updating.

      Stay safe!

  • Lafaiete says:

    just a question please I have iWork on my mac , on my office I use just Microsoft office 2010 watt you suggest to use iWork or office ?

    • Thomas says:

      That is something that will depend on your personal preferences. For my needs, I much prefer the iWork apps, but they aren’t right for everyone. I’m not an expert when it comes to comparisons of office apps, as I don’t use such software very often, so I’m probably not the best person to ask about this. 🙂

      • Someone says:

        Also, the iWork apps have the option to save as Office documents. Only issue: they save as the 2003/2004 version of Office: .doc, .ppt, .xls; Office 2010 uses .docx, .pptx, .xlsx. I think that you can open .doc in Word 2010 though, etc.

  • Someone says:

    Thomas –

    You said “Microsoft issued an update for Office 2011 today that could lead to code execution by simply opening a maliciously-crafted Office document.” Doesn’t this sort of imply that the update leads to the problems, not the vulnerability it fixes?

    I understand what you said, but it is a bit confusing.

This post is more than 90 days old and has been locked. No further comments are allowed.