CVE-2008-7217
First published: Sun Sep 13 2009(Updated: )
Microsoft Office 2008 for Mac, when running on Macintosh systems that restrict Office access to administrators, does not enforce this restriction for user ID 502, which allows local users with that ID to bypass intended security policy and access Office programs, related to permissions and ownership for certain directories.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Office | =2008 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2008-7217?
The severity of CVE-2008-7217 is considered moderate, as it allows local users to bypass security restrictions.
How do I fix CVE-2008-7217?
To fix CVE-2008-7217, ensure that administrative restrictions are properly enforced and consider applying available updates from Microsoft.
What systems are affected by CVE-2008-7217?
CVE-2008-7217 affects Microsoft Office 2008 for Mac running on Macintosh systems with restricted access.
Can CVE-2008-7217 be exploited by any user?
Yes, CVE-2008-7217 can be exploited by local users with user ID 502 to access restricted Office programs.
Is there a patch available for CVE-2008-7217?
Yes, patches and updates to address CVE-2008-7217 are available from Microsoft.
- agent/softwarecombine
- agent/first-publish-date
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/nvd-historical
- agent/author
- vendor/microsoft
- canonical/microsoft office
- version/microsoft office/2008