The Microsoft Office 2010 beta was released Wednesday, and though there aren't many major changes from the Technical Preview from July, there are some new features and enhancements worthy of note. This post will focus on the changes to the beta, but if you want a larger overview of new features across all the applications, check out our rundown of the Microsoft Office 2010 Technical Preview.
Outlook is the cornerstone of many companies' communications and daily schedules, and as such received a lot of enhancements in Office 2010. In the beta version, Microsoft has added even more ways to connect with coworkers and contacts. The new Outlook Social Connector is an added information pane that gives you more info about everyday contacts. Once set up, you'll be able to view pictures of contacts (even in large cc lists), previous conversations, attachments shared, meetings attended, and much more. Though not complete in the beta, Microsoft says the Outlook Social Connector will soon be able to connect with social Web sites like Facebook and Twitter, so you can follow status updates and more all in one location.
The Office 2010 Technical Preview introduced the Back Stage view, an enhanced File menu (accessed from the Office Icon tab) that lets you manage your documents, set permissions, and share your projects with colleagues. In the beta version Microsoft has decided to return to calling it the File menu, but with all the functionality and flexibility of Back Stage. They also have made it possible to access all the other tabs in the Ribbon, which were previously inaccessible in the Technical Preview, so you can get to the information you want quickly without the added step of exiting Back Stage.
... Read more
(Credit:
CNET)
The Microsoft Office 2010 technical preview is available today through invite only and--though it's not in its final form--there are plenty of feature enhancements to be excited about, if Microsoft can pull it off. According to Microsoft, the focus of this update was on three things: to make work flows more efficient; to effectively use Web applications to make your work available anywhere; and to make collaboration with others much easier. In this CNET First Take, we'll take a look at some of the notable feature changes across many of the applications. Microsoft says Office 2010 will let you use your PC, phone, and the Web to make your projects come together more efficiently. From what we've seen, they might be right and the Web applications might also give Google Docs a run for their money.
The Ribbon (introduced in Office 2007) continues to keep frequently used features handy at the top of your work space. But in Office 2010, you'll have access to the Ribbon across all of the applications in the suite, with contextual tabs and features to help you get the most out of each program. In Outlook 2010, for example, a Quick Steps section of the Ribbon has options to let you quickly create team meetings, move threads to specific folders, or custom forward messages (with premade subjects) to specific recipients. In Excel, you can flip through the tabs to access formulas, insert diagrams and charts, and quickly import data from connected sources. Having an easy way to access the most-used functions of each of the Office applications is very handy, and it's clear Microsoft did its research to make the most of each application's Ribbon.
It's also clear that Microsoft has paid attention to patterns across all of the applications to come up with easier ways to get things done. The new Paste Preview lets you easily switch between paste options so you know your work will be formatted correctly in your document before you commit. In Outlook, it's now possible to turn long e-mail threads into conversations, so you can quickly find information from specific participants without having to scroll through long, confusing threads. Another new feature lets you ignore entire threads including future e-mails on a subject so you can eliminate noise and distractions in your workday. Office 2010 includes many new time-saving features like these across the entire suite, but there's more than just tweaks to existing work flow.
Some of the flashier feature additions will be good news to those who work with media in their documents and presentations. PowerPoint now has options for editing video right within the program. You'll be able to trim video so your audience sees only the video content you want them to see. You also can add video effects, fades, and even create video triggers to launch animations during your presentation. When it's a static presentation you're working on--such as a publication, newsletter, or pamphlet--Office 2010 will let you edit and add effects to images so you won't need a third-party image editor. Microsoft has also added easy access to Ligatures and Stylistic Alternates to fonts in Publisher so you can add your own personal touches to your publications. Like most of the new features in Office 2010, you can find most of these added options in the Ribbon for that particular application.
As more of our data moves into the cloud, sharing and collaboration have become a major part of project execution, and Office 2010 will offer several options to help people work together. Though the Web-based components of the Office suite are not available in the technical preview, adding these options will make sharing information easier--whether it's from your home computer, your phone, or when you're traveling for business. Lightweight Web browser versions of Word, PowerPoint, Excel, and OneNote have been announced, and, according to Microsoft, they will preserve the look and feel of a document regardless of the device you're working on--even if it's your smartphone.
New coauthoring in Word, PowerPoint, and OneNote and advanced e-mail management and calendaring capabilities in Outlook will make collaboration much easier, reducing the time it takes to finish large projects with several contributors. Businesses will be required to use Microsoft SharePoint Server 2010 or Microsoft Windows SharePoint Services to gain access, but private users will be able to access their work using Windows Live. Obviously, we can't predict how well the Web components of each program will be implemented or how they will translate to different hardware, but offering access to shared documents in key business applications from anywhere is something any international business or business traveler can appreciate.
One of our favorite improvements to Office 2010 is what Microsoft calls the Backstage view. Offered as a replacement for the File menu, Backstage gives you a launching point to share documents, print out your work, set permissions, and other program specific options to get your project ready for distribution. You'll find all of the usual document management features, like open and save, here as well, but you'll also get a nice layout of templates for new documents, several different ways to share your work, and print settings and page layouts all in one place. We think people might initially be resistant to a new way of doing things (as is often the case), but once you get used to using the Backstage view for all of your file management, we think you'll find it useful and efficient to have access to everything in one place.
Microsoft Office 2010 will be released early next year and it appears Microsoft has made extensive usability improvements across the entire Office suite. We're told the Web components of Office applications will become available for testing later this year, so check back as more information becomes available.
Updated at 2:20 p.m. PDT with Adobe update released; at 12:25 p.m. PDT with Microsoft saying this is a record number of vulnerabilities addressed in Patch Tuesday; and at 11:45 a.m. PDT with comment.
Microsoft has released 10 security updates fixing a record number of Patch Tuesday holes, including one for a critical hole in Internet Explorer 8 that was exploited as part of a hacking contest at CanSecWest in March.
The bulletin addresses 31 vulnerabilities. "It's the most since Microsoft started releasing updates on a regular schedule of the second Tuesday of every month in October 2003," a Microsoft spokesman said.
The June security Patch Tuesday bulletin resolves eight vulnerabilities in IE, the more severe of which could allow remote code execution if a user views a specially crafted Web page. The IE8 vulnerability does not affect Windows 7 RC (build 7100), but does affect Windows 7 beta.
The updates also plug two critical holes in implementations of Active Directory on Windows 2000 Server and Windows Server 2003, and Active Directory Application Mode installed on Windows XP Professional and Server 2003, the worse of which could allow an attacker to take control of a system remotely.
The security update fixes three critical vulnerabilities in Windows Print Spooler that could allow remote code execution if an affected server received a specially crafted RPC (remote procedure call) request.
Several vulnerabilities in Office Word and Excel are addressed in the update that could allow an attacker to remotely run code or take control of the machine using a specially crafted Word or Excel file. The update fixes the PowerPoint vulnerability Microsoft warned in April was being exploited in limited, targeted attacks that was fixed in the Windows version last month.
The update includes a patch for an important hole in its IIS Web server product that Microsoft reported in May.
"We didn't see any in-the-wild exploitations of the (IIS WebDav) vulnerability but typically when Microsoft releases those alerts they're doing it because a customer" has alerted them to an exploit, said Steve Manzuik, senior manager of security research at Juniper Networks.
Also fixed is a critical vulnerability in Microsoft Works Converters, important vulnerabilities in RPC and Windows Kernel. And Microsoft fixed a moderate vulnerability in Windows Search that could allow information disclosure if a user performs a search that returns a specially crafted file as the first result, or if the user previews a malicious file from the search results. By default, the Windows Search component is not preinstalled on Windows XP and Server 2003.
Products affected by the updates include Windows 2000, XP, XP Professional edition, Vista, Server 2003, Server 2008; Office 2000, 2003, 2007, and XP; and Microsoft Office 2004 and 2008 for the Mac.
Other affected software includes Office Excel Viewer; Office Word Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats; Works 8.5 and 9.0; and Office SharePoint Server.
The updates did not include a fix for a vulnerability in Microsoft's DirectX streaming media technology in Windows disclosed late last month that could allow someone to take complete control of a computer using a maliciously crafted QuickTime file.
"They probably didn't have time to QA (quality assurance test) it adequately," said Wolfgang Kandek, chief technology officer at Qualys. "It doesn't surprise me because look at how many vulnerabilities they had in this release. It must have been an enormous workload for these teams to fix all of these."
Adobe also issued security updates for Adobe Reader and Acrobat versions 7.x, 8.x, and 9.x for Windows and Macintosh on Tuesday in its first quarterly security update for its popular software for creating and reading PDF files.
The updates, available from Adobe's site, resolve critical vulnerabilities in Adobe Reader 9.1.1 and Acrobat 9.1.1 and earlier versions that could cause the application to crash and could potentially allow an attacker to take control of the system.
Updated 3:30 p.m. PDT with Adobe update due on Tuesday.
Microsoft will release 10 security updates on Patch Tuesday next week, including critical patches for holes in Windows, Internet Explorer, Word, Office, and Excel.
In addition, Adobe said it will provide security updates for Adobe Reader and Acrobat versions 7.x, 8.x, and 9.x for Windows and Macintosh on Tuesday in its first quarterly security update for its popular software for creating and reading PDF files. The critical update will be detailed on Adobe's security bulletin site.
Meanwhile, the six critical vulnerabilities in Microsoft software could allow an attacker to remotely execute code on a machine, according to the Microsoft security bulletin issued on Thursday.
Three important vulnerabilities in Windows could allow an attacker to elevate privileges and one moderate vulnerability in Windows could enable information disclosure.
Affected products include Windows 2000, XP, XP Professional edition, Vista, Server 2003, Server 2008; Office 2000, 2003, 2007, and XP; and Microsoft Office 2004 and 2008 for the Mac.
Other affected software includes Office Excel Viewer; Office Word Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats; Works 8.5 and 9.0; and Office SharePoint Server.
It's likely the PowerPoint vulnerability is the same one that Microsoft warned about in April and fixed in the Windows version last month.
Missing from the list of patches is one disclosed by Microsoft in its DirectX streaming media technology in Windows last week that could allow someone to take complete control of a computer using a maliciously crafted QuickTime file.
Microsoft will issue a patch on Tuesday to fix a critical vulnerability in PowerPoint that could be the same hole that has been exploited in limited and targeted attacks.
The vulnerability affects Microsoft Office 2000, 2003, 2007 and XP, as well as PowerPoint Viewer and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 file formats, according to an advance notification released on Thursday.
In a security advisory in early April, Microsoft warned about a vulnerability in PowerPoint that had been targeted by attacks that were tailored and not widespread.
That vulnerability could be exploited by getting a person to open a PowerPoint file rigged for the attack, the company said. When the file is opened, PowerPoint will access an invalid object in memory. That then allows an attacker to remotely execute code on the system.
Sheets To Go, the Microsoft Excel equivalent.
(Credit: Data Viz)BlackBerry users have been waiting for Documents To Go, an excellent document viewer that's been besting native viewers on mobile phones, for years. On Tuesday, Data Viz ended the impatient toe-tapping with Documents To Go Premium Edition 1.005 and its new companion PDF-viewer, PDF To Go.
The Premium Edition of Documents To Go ($49.99 for a yearly subscription or $69.99 for a lifetime license), builds on the Standard Edition that comes preloaded on the BlackBerry Bold (review), which also officially released in the U.S. today.
This pro version lets you read, fully edit, and create new word processing documents, spreadsheets, and slide shows that are compatible with Microsoft Word, Excel, and PowerPoint. In Word To Go, for instance, the spell-checking, track-changing, and copy/paste actions are all there. So is support for formatting with bullets, fonts, and form and table inserts, and support for password-protecting those sensitive documents.
PDF To Go is a separate download for viewing PDF documents.
(Credit: Data Viz)Data Viz is also throwing in the new PDF viewer, PDF To Go, with the Premium Edition. Like most PDF viewers on any platform, PDF To Go supports zooming in and preserves formatting on the BlackBerry by wrapping words.
The standard version of Documents To Go is a bona fide perk for Bold owners, who would be otherwise stuck with the BlackBerry's traditionally rather stunted documents viewers. This premium version is certainly better, creating a seamless, intuitive, and feature-packed document handler. You can see a feature-by-feature comparison of the standard and premium versions here.
Documents To Go Premium Edition is undoubtedly a worthy investment for business folks and road warriors, but it also finds competition in eOffice 4.5, which is available for all BlackBerry operating systems (not just 4.5 and above), and which has most of the same features at a slightly lower price ($39.95). eOffice's additional support Google Docs and Spreadsheets, remote access to PC files, and the ability to fax or print documents from the BlackBerry gives Documents To Go Premium a hard run for your money.
You can try Documents To Go Premium for yourself as a free, thirty day trial. It's compatible with BlackBerry's Bold, Pearl Flip, and Storm smartphones.
Demand for OpenOffice.org 3 has been so high on its first day of out of beta that the official Web site crashed.
In the meantime, users can also download it for Windows and Mac from Download.com, and there are a couple of torrents being shared as well on the usual big-name trackers.
OpenOffice's redesigned landing page.
(Credit: CNET Networks)After using OpenOffice's MS Word analog, Writer, all day, I can confirm that this update is worth it for the improvement in response and load times, if nothing else. The installation is still enormous, with an installer about 130MB for Windows users and 160MB for Mac, but the installation process is smoother. From start to finish, it clocked in at around 5 minutes, significantly faster than installing OpenOffice 2. People who use OpenOffice as their primary productivity suite should take advantage of the OpenOffice Quickstarter, which noticeably accelerates program launch times and has been made even faster in version 3.
Mac users will also be pleased to see that they no longer need to grab a separate installation of X11--the new installer will run natively on OS X, and Windows Vista users should encounter fewer problems than before.
Many of the new features are only noticeable depending on how much of the OpenOffice suite you use. If you're a rebel and you use it in your work environment when everybody else is still on Microsoft Office, the compatibility with Office 2007/2008 file formats is hard to ignore. Finally getting native support for DOCX and XLSX, for example, is long overdue. If my tests jumping back and forth between XLSX and XLS files were any indication, though, the formats are now seamlessly integrated. However, OpenOffice can not yet save files in the new MS Office format.
Upgrades to OpenDocument Format 1.2 were glitch-free.
Other improvements to the two most-used programs in OpenOffice include multiple page viewing, improved notes and commenting, and improved PDF creation and importation in Writer, and a Solver feature and spreadsheet sharing in Calc. As you can tell, though, most of these changes bring OpenOffice up to the new standard of MS Office. Besides the OpenDocument Format support, there's little here that you can't get in Office. Of course, the benefit of OpenOffice being freeware can't be understated.
The new Start Center should appeal only to users who like having a landing page or only want to have one link on their desktop. It opens up a slightly redesigned window that highlights all of the OpenOffice tools with big icons. I find the Quickstarter to be a more effective and less intrusive way to do the same thing. Unfortunately, the interface within each program in the suite has gone largely unchanged. It looks fine when compared with MS Office 2003, but not so much when up against the Office 2007/2008.
One useful change involving the landing page is that it now shows up whenever you close a document but don't exit the program. This streamlines the work flow when jumping between applications, as well as giving you something to look at besides a big gray expanse of nothingness.
Overall, though, the interface isn't detrimental to using OpenOffice--it's just not a selling point. If it's the features that you use the suite for, then there's no reason not to upgrade.
If you go to OpenOffice's Web site right now, you will be greeted with this:
Apologies - our website is struggling to cope with the unprecedented demand for the new release 3.0 of OpenOffice.org. The technical teams are trying to come up with a solution.
Fortunately, however, you will also find links to download the latest version of the well-known, well-loved, and open-source OpenOffice.org suite, the alternative to the notoriously overpriced Microsoft Office.
After a lengthy development time, the company finally released its new 3.0 version of the software suite on Monday, and the download frenzies have forced the company to close all parts of its Web site to dedicate bandwidth for the downloading demand.
Apart from the fact that it's free and open source, the OfficeOffice.org suite is the only office suite that's available in all platforms including Windows, Linux, Solaris, and Mac.
Like previous versions, the OpenOffice.org 3.0 includes applications for word processing, spreadsheets, presentation, drawing, and databases. The new version's initial release offers only read-only support for Microsoft Office 2007 file formats including DOCX (Word), XLSX (Excel), and PPTX (PowerPoint), but can convert them into Office 2003 file formats.
The installer of OpenOffice.org 3.0 for Windows is only about 140MB in size, but it took me quite a long time to download due to the heavy traffic to the site. However, my colleague Seth Rosenblatt said he could get that done much faster using BitTorrent. You can also download the files from Download.com, for Windows and Mac.
Article updated 11/4/08.
There's much to admire in RIM's native software set for BlackBerry phones, but for many, the built-in document viewer isn't one of them. Word documents on most models open in a plain text monotone; serviceable, but without the benefit of formatting or the capability to edit the text.
On Monday, Quickoffice released an updated solution for business users and prosumers angling for a more familiar desktop read and the capability to edit attached documents. In addition to support for the usual Microsoft documents--Word, Excel, PowerPoint--eOffice 4.5 ($29.95 after a free 7-day trial) supports Google Docs and Spreadsheets. For companies that have adopted Google's collaboration tools, this feature could indeed provide a valuable way for employees to update their feedback--if their BlackBerry runs on platform 4.5.
The newer models do (the anticipated BlackBerry Bold will run on 4.6), but in the U.S. at least, carriers have been slower in releasing the software upgrade to existing customers whose BlackBerrys run on older software. Eventually, everyone will be approved for version 4.5, but when they get it, will they still want eOffice? Key Quickoffice competitor DataViz confirms that Documents To Go Standard Edition, a reader and basic editor, will come bundled with the carriers' 4.5 update.
The question, then, will be if BlackBerry owners seeking more advanced editing capabilities will upgrade from the free standard edition of Documents To Go to the premium edition, or if they'll give eOffice a try. While the DataViz Web site charts differences between the standard and premium builds, support for Google documents isn't listed among them. That could prove to be eOffice's edge.
Microsoft on Tuesday released its August 2008 security bulletin. Bulletins rated "critical" concern Microsoft Access 2003 and earlier; Microsoft Word 2002 and 2003; Microsoft Excel; and Microsoft Office 2000, Microsoft Office XP and Microsoft Office 2003. A cumulative patch for Internet Explorer also is rated critical.
"Important" bulletins affect Windows Internet Protocol Security (IPsec); Outlook Express and Windows Mail; Microsoft Windows Event System; Windows Messenger; and Microsoft PowerPoint. All Microsoft security patches for both Windows and Office software are available via Microsoft Update or via the individual bulletins detailed below.
Titled "Vulnerability in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution (955617)." This bulletin affects Snapshot Viewer for Microsoft Access and for supported versions of Microsoft Office Access 2000, Microsoft Office Access 2002, and Microsoft Office Access 2003. This update addresses the vulnerability in CVE-2008-2463. Microsoft says that "an attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user."
Titled "Vulnerability in Microsoft Word Could Allow Remote Code Execution (955048)." This bulletin only affects users of Microsoft Word 2002 and Microsoft Word 2003. The update addresses vulnerability detailed in CVE-2008-2244. Microsoft says that "an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights."
Titled "Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (954066)." This bulletin affects users of Microsoft Office Excel 2000 Service Pack 3 and rated Important for Excel 2002 Service Pack 3, Excel 2003 Service Pack 2, Excel 2003 Service Pack 3, Excel Viewer 2003, Excel Viewer 2003 Service Pack 3, Excel 2007, Excel 2007 Service Pack 1, Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats, Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 1, Microsoft Office Excel Viewer, and Microsoft Office SharePoint Server 2007. The update addresses the issues detailed in CVE-2008-3003, CVE-2008-3004, CVE-2008-3005, CVE-2008-3006. Microsoft says that "an attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights."
Titled "Vulnerabilities in Microsoft Office Filters Could Allow Remote Code Execution (924090)." This bulletin affects Microsoft Office 2000, and is "important" for supported editions of Microsoft Office XP, Microsoft Office 2003 Service Pack 2, Microsoft Project 2002 Service Pack 1, Microsoft Office Converter Pack, and Microsoft Works 8. This update addresses the vulnerabilities detailed in CVE-2008-3018, CVE-2008-3019, CVE-2008-3021, CVE-2008-3022, and CVE 2008-3460. Microsoft says these vulnerabilities could allow remote code execution if a user views a specially crafted image file when using Microsoft Office.
Titled " Cumulative Security Update for Internet Explorer (953838)." This bulletin affects users of all supported releases of Internet Explorer. This update addresses the vulnerabilities detailed in CVE-2008-2254, CVE-2008-2255, CVE-2008-2256, CVE-2008-2257, CVE-2008-2258, and CVE-2008-2259. Microsoft says all of the vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer.
Titled " Vulnerability in Microsoft Windows Image Color Management System Could Allow Remote Code Execution (952954)." This bulletin affects users of Microsoft Windows 2000, Windows XP, and Windows Server 2003. This update addresses the vulnerability detailed in CVE-2008-2245. Microsoft says a vulnerability in the Microsoft Image Color Management (ICM) system could allow remote code execution in the context of the current user. "If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights."
Titled " Vulnerability in IPsec Policy Processing Could Allow Information Disclosure (953733)." This bulletin affects all supported versions of Windows Vista and Windows Server 2008. This update addresses the vulnerability detailed in CVE-2008-2246. Microsoft says the vulnerability could cause systems to ignore IPsec policies and transmit network traffic in clear text, disclosing information intended to be encrypted on the network. An attacker viewing the traffic on the network would be able to view and possibly modify the traffic. According to Microsoft: "Note that this vulnerability would not allow an attacker to execute code or to elevate their user rights directly. It could be used to collect useful information to try to further compromise the affected system or network."
Titled "Security Update for Outlook Express and Windows Mail (951066)." This bulletin affects Windows XP and Windows Vista and is rated "low" for supported editions of Windows Server 2003 and Windows Server 2008. This update addresses the vulnerability detailed in CVE-2008-1448. Microsoft says this vulnerability could allow information disclosure if a user visits a specially crafted Web page using Internet Explorer.
Titled "Vulnerabilities in Event System Could Allow Remote Code Execution (950974)." This bulletin affects Windows 2000, Windows XP, Windows Server 2003, and Windows Server 2008. This update addresses the vulnerability detailed in CVE-2008-1456 and CVE-2008-1457. Microsoft says that "an attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights."
Titled "Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (944338)" This bulletin affects Windows Messenger 4.7 and Windows Messenger 5.1 and rated Important for all supported editions of Microsoft Windows 2000 and Windows XP, and Moderate for all supported versions of Windows Server 2003. This update addresses the vulnerability detailed in CVE-2008-0028. Microsoft says that "as a result of this vulnerability, scripting of an ActiveX control could allow information disclosure in the context of the logged-on user. An attacker could change state, get contact information, and initiate audio and video chat sessions without the knowledge of the logged-on user. An attacker could also capture the user's logon ID and remotely log on to the user's Messenger client impersonating that user."
Titled "Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (949785)." This bulletin affects Microsoft Office PowerPoint 2000 and is rated "important" for supported editions of Microsoft Office PowerPoint 2002, Microsoft Office PowerPoint 2003, Microsoft Office PowerPoint 2007, Microsoft Office PowerPoint Viewer 2003, Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats, Microsoft Office 2004 for Mac, and Microsoft Office 2008 for Mac. This update addresses the vulnerability detailed in CVE-2008-0120, CVE-2008-0121, and CVE-2008-1455. Microsoft says an attacker who successfully exploited any of these vulnerabilities could take complete control of an affected system: "An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights."
