Microsoft Word Security Feature Bypass Vulnerability - CVE-2020-16933 (Mac OS X)| ID: oval:org.secpod.oval:def:66068 | Date: (C)2020-10-14 (M)2024-01-08 |
| Class: VULNERABILITY | Family: macos |
A security feature bypass vulnerability exists in Microsoft Word software when it fails to properly handle .LNK files. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the file could then take actions on behalf of the logged-on user with the same permissions as the current user.
| Platform: |
| Apple Mac OS X 10.11 |
| Apple Mac OS X 10.12 |
| Apple Mac OS X 10.13 |
| Apple Mac OS X 10.14 |
| Apple Mac OS X 10.15 |
| Product: |
| Microsoft Word 2016 for Mac |
| Microsoft PowerPoint 2016 for Mac |
| Microsoft Outlook 2016 for Mac |
| Microsoft OneNote 2016 for Mac |
| Microsoft Excel 2016 for Mac |
