"Microsoft Apps for macOS Exposed to Library Injection Attacks"

According to researchers at Cisco Talos, eight Microsoft apps for macOS are vulnerable to library injection attacks that could enable adversaries to breach sensitive data. Affected Microsoft apps include Microsoft Teams, Outlook, PowerPoint, and Word. Attackers could bypass macOS' permission model using app permissions without the need for additional user verification. Through this, attackers could send emails from the user account, record audio, and more. This article continues to discuss findings regarding the vulnerability of Microsoft apps for macOS to library injection attacks as well as concerns surrounding macOS' permission model.

Infosecurity Magazine reports "Microsoft Apps for macOS Exposed to Library Injection Attacks"

Submitted by grigby1

Submitted by grigby1 CPVI on