Skip to content
Thoughtful, detailed coverage of everything Apple for 34 years
and the TidBITS Content Network for Apple professionals
Log In
TidBITS Staff

Patch Office X for Network Vulnerability


Microsoft has released a Network Security Updater for Microsoft Office X that eliminates a network vulnerability made possible by the a flaw in the application suite’s network-aware anti-piracy mechanism. Office X checks to make sure that every copy running on the network is using a unique product identifier (PIDs); if an Office application detects a duplicate, it shuts down. As discovered by Marty Schoch, the problem is that the checking code doesn’t correctly handle a malformed PID announcement, causing the first Office application launched to crash, with the possible loss of data. There is no possibility that data could be created, deleted, or modified, though. Even without the patch, a firewall can block the offending packets coming in from the Internet. For full details, see Microsoft Security Bulletin MS01-002.

Subscribe today so you don’t miss any TidBITS articles!

Every week you’ll get tech tips, in-depth reviews, and insightful news analysis for discerning Apple users. For over 33 years, we’ve published professional, member-supported tech journalism that makes you smarter.

Registration confirmation will be emailed to you.

This site is protected by reCAPTCHA. The Google Privacy Policy and Terms of Service apply.