Microsoft has released a critical security bulletin MS08-057. This security bulletin affects both Office 2004 and 2008. Microsoft recommends that customers apply the update immediately.
This update includes fixes for vulnerabilities that an attacker can use to overwrite the contents of a computer’s memory by using malicious code.
This security update resolves three privately reported vulnerabilities in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Office 2004 download 11.5.2
Office 2008 download 12.1.3
Twitter
Facebook
del.icio.us
Digg
StumbleUpon
Google Bookmarks
PDF
Print
does office 2008 download 12.1.3 include security update MS08-057??
Has anyone else noticed that Entourages use of the keychain is now a bit screwed after applying this?
*Everytime* a directory lookup is needed I get prompted, even if I choose Always Allow.
Annoyance.
i’m using the Office 2008 Entourage…
FWIW, I haven’t seen it reported yet. If yours is not sticking, you might try Repair Permissions and apply the Mac OS X 10.5.5 Combo Update.
Other option would be to run Keychain FirstAid. Deleting the entry in the Keychain and deleting the account in Entourage also might be needed.
Let us know what works.
I asked the same question when I received the notice. My understanding is yes. If I find out different I will make an announcement.
I verified it is included.
If you click on the ‘Security Update Deployment|Office 2008 for
Mac|Deployment Information’ links you will see this:
“Download and install the appropriate language version of the Microsoft
Office 2008 for Mac 12.1.3 Update from..”