[Macusers] Mac users: If you use Office 2004, please read the following message

[Jacobus Kats]

   There has been a exploit unearthed that affects all users of  
Microsoft Office, including the Mac version.  Please run the latest  
update (11.3.8) to update your installation.  You can check for any  
updates while running any Microsoft Office application by going to  
its Help menu and choosing "Check for Updates".  If it finds an  
update with a version number earlier than 11.3.8, run the update and  
check again.  There will likely be a series of updates to install,  
leading up to the 11.3.8 update.
   It's not often as a Mac user that we have to worry about viruses  
and other exploits, but this one is serious and the updates are  
highly recommended

Bart Kats
Computing & Communications


Here is the summary of the exploit for those that are interested:
------------------------------------------------------------------------

Below is a REN-ISAC Microsoft vulnerability announcement:

Extremely critical - Microsoft Word Unspecified Memory Corruption
Vulnerability
http://www.microsoft.com/technet/security/Bulletin/MS07-060.mspx

A vulnerability has been reported in Microsoft Word, which can be
exploited by malicious people to compromise a user's system. The
vulnerability is caused due to an error in the handling of Word
documents and can be exploited to corrupt memory when a user opens a
specially crafted Office file. Successful exploitation allows execution
of arbitrary code.

NOTE: According to Microsoft, this is currently being actively
exploited. Users are strongly advised to apply patches.


Microsoft Office 2000 SP3:
http://www.microsoft.com/downloads/details.aspx? 
FamilyId=8B3072FB-5933-47F7-A498-13A93E268E57

Microsoft Office XP SP3

http://www.microsoft.com/downloads/details.aspx? 
FamilyId=D6B787BB-03FF-4F67-8B69-6011FB18BA75

Microsoft Office 2004 for Mac:
http://www.microsoft.com/mac/downloads.aspx#Office2004

See also:
http://secunia.com/advisories/27151/