- Office For Mac
- Missing Localized Strings Here Office For Mac 2016 Free
- Missing Localized Strings Here Office For Mac 2016 Download
- Missing Localized Strings Here Office For Mac 2016 Download
Using the Mail Merge Feature in Microsoft Word 2016 for Mac. Mail merge is not just for documents; you can use it for brochures, newsletters, or materials for mass mailings.
ModifiedThis vulnerability has been modified since it was last analyzed by the NVD. It is awaiting reanalysis which may result in further changes to the information provided.
Python 3.5.2 - June 27, 2016. Download Mac OS X 32-bit i386/PPC installer; Download Mac OS X 64-bit/32-bit installer; Python 2.7.12 - June 25, 2016. Download Mac OS X 32-bit i386/PPC installer; Download Mac OS X 64-bit/32-bit installer; Python 3.4.4 - Dec. Download Mac OS X 32-bit i386/PPC installer; Download Mac OS X 64-bit/32-bit. Another thing that has helped me resolve funky issues with Office 2016 on Mac is these 2 commands from the terminal: (This is safe) Close all office apps first. Defaults delete com.microsoft.Com. Killall cfprefsd. Now run Office applications again and see if things improve. Just FYI MAC works this way: 1. Tools Accounts in Outlook. Select your email account and click the Advanced tab. Steps 3 and 4 don't exist in the mac client. Tools slider online/Offline was already online. Automatic save on mac. No 6 only focused and Other inbox. Here, for example, in our “Replace With” box we’re using the text “ 2 1” and that tells Word to replace what it finds by placing the second grouping (the name Amelia) in the first position and the first grouping (the name Griggs) in the second position. Use a Backslash ( ) if You Need to Search for a Character That’s Also a Wildcard.
Current Description
The GDI component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Office for Mac 2011, and Office 2016 for Mac allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka 'GDI Information Disclosure Vulnerability.'
Analysis Description
The GDI component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Office for Mac 2011, and Office 2016 for Mac allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka 'GDI Information Disclosure Vulnerability.'
Severity
CVSS 3.x Severity and Metrics:Weakness Enumeration
CWE-ID | CWE Name | Source |
---|---|---|
CWE-200 | Exposure of Sensitive Information to an Unauthorized Actor | NIST |
Known Affected Software Configurations Switch to CPE 2.2
Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.
Change History
6 change records found show changesKnown Issues
- A couple of the tests allow you to 'Ignore trusts for SSL'. Checking this option only tells the tool to not fail if the certificate you are using is not in the list of Trusted Root Certificates... for example if you were using a certificate from your own Windows CA. This option does not allow the test to be completed over a non-SSL connection. That is, if you do not have a certificate and want to test whether Exchange ActiveSync works over port 80 - this tool cannot perform this validation. We will not be able to add this feature in the future.
- While performing tests, the stage of testing will not update while the test is being performed. Your full test results will be available once the test is complete.
- Modern Authentication (OAuth) is not yet supported when running tests against Office 365 operated by 21Vianet (Gallatin).
Version 4.0.2 (December 2020)
- Added a Microsoft Teams test to help diagnose why the calendar app in Teams is not showing up for a user.
- Added a new test for Exchange Online Mailbox Provisioning to help diagnose common problems and check whether Azure AD and EXO are in sync.
- Minor bug fixes.
Version 4.0.1 (November 2020)
- Added Modern Authentication (OAuth) support for the Office 365 POP and IMAP tests.
- Added support for doing certificate analysis when using TLS with POP and IMAP.
- Updated the cookie usage banner for our users from the European Union. EU users can now change their cookie preferences at any time in the footer of the site.
- The Office 365 DNS test will now perform all the DNS checks even if the first one fails.
- Fixed a formatting issue with test results saved as HTML.
- Minor bug fixes.
Version 4.0.0 (October 2020)
- Added Modern Authentication (OAuth) support for Office 365 tests except for POP and IMAP (which are coming soon).
- Added the explicit O365 endpoint (cloud-first) Autodiscover method used by Outlook 2016 version 16.0.6741.2017 and later for the Office 365 tests. If you want to skip this method, choose a test from the Exchange (on-premises) section.
- Minor bug fixes.
Version 3.9.9 (September 2020)
- Enhanced the detection logic of the Autodetect portion of the Hybrid Modern Authentication test.
- Added a new option to allow users to enable or disable autofill on the test input form.
- Minor bug fixes.
Version 3.9.8 (August 2020)
- Fixed a bug in the Sender ID test when SPF records are implemented in multiple parts.
- Test nodes with errors now have the additional details section expanded by default in the UI.
- Lots of preparation for supporting modern authentication (OAuth) in the coming months.
- Minor bug fixes
Version 3.9.7 (July 2020)
- Added a test for Hybrid Modern Authentication for Outlook for iOS and Android.
- Minor bug fixes
Version 3.9.6 (June 2020)
- Updated all the test input forms to use Microsoft Fluent UI.
- Better result messages when conditional access or multi-factor authentication causes authentication to fail.
- Minor bug fixes
Version 3.9.5 (May 2020)
- Updated the user interface on the test results page.
- Updated to the Office 365 free/busy test which should make it more accurate.
- Added a nicer looking loading message during page load.
- Fixed problems with mobile layout on the new parts of the site.
- Added a simple favicon.
- Confirmed static outbound IP configuration so we can publish our IP addresses.They will be included with a future update to the Office 365 Endpoints documentation, but for now, here they are:
- 168.61.212.41
- 40.77.62.163
- 13.74.35.9
- 94.245.110.149
- 52.187.1.140
- 52.230.70.62
- Minor bug fixes
Version 3.9.4 (April 2020)
- Brand new main page and test selection UI based on Microsoft Fluent UI. Not to worry though, all the same tests you love are still available.
- Allow user language selection through the settings icon on the title bar.
- Updated wizard icons in the legacy UI.
- Removed the format requirements on the Exchange POP and IMAP tests to allow username without domain.
- Minor bug fixes
Version 3.9.3 (March 2020)
- Moved the SaRA banner off of the front page. It is still available on the Office 365 and Client tabs.
- Made a few web site style updates.
- Added SSL/TLS protocol and cipher suite detection when running against on-premises servers. If you run the tests from the Office 365 tab, we will also verify that the on-premises server has protocols and cipher suites that are supported by Office 365 (for Hybrid and migration scenarios).
- Minor bug fixes
Version 3.9.2 (February 2020)
- Added extended error information for RPC over HTTP failures.
- Upgraded to target .NET Framework version 4.7.2
- Added full support for running tests against environments that exclusively use TLS 1.2.
- Minor bug fixes
Version 3.9.1 (January 2020)
- Added a feature to allow closing the SaRA banner on the main page.
- Re-wrote the SSL certificate tests which now use Windows 10 roots for validation instead of older versions.
- Removed the downloadable client version of the analyzer tool. SaRA is now the only supported option for a client-side tool.
- Removed the locally hosted copy of the Message Header Analyzer in favor of the publicly supported open-source version.
- Upgraded some web site dependencies.
- Deployed the tool on new Azure hosting.
Version 3.9 (October 2015)
- Added banner for Microsoft Office 365 Support and Recovery Assistant and Client Performance Analyzer tools.
- Removal of Mail flow tests as the latest tests are available through Exchange Admin Center under connectors tests.
Version 3.8 (February 2015)
- Added support for validating the modern client authentication flows for Azure Active Directory Federation test
- Removal of AHBL validation
Version 3.7 (October 2014)
- Minor bug fixes
Version 3.6 (August 2014)
- Minor bug fixes
Version 3.5 (July 2014)
- Minor bug fixes
Version 3.4 (June 2014)
- Minor bug fixes
Version 3.3 (May 2014)
- Minor bug fixes
Version 3.2 (April 2014)
- Minor bug fixes
Version 3.1 (March 2014)
- Minor bug fixes
Version 3.0 (February 2014)
- Minor bug fixes
Version 2.9 (January 2014)
- Minor bug fixes
Version 2.8 (November 2013)
- Minor bug fixes
Version 2.7 (September 2013)
- Globalization bug fixes
- Improvements to the Mail Flow Configuration Tests
Version 2.6 (August 2013)
- Minor bug fixes
Version 2.5 (July 2013)
- 32 bit version of the downloadable Microsoft Connectivity Analyzer Tool is now available
- Added an Autodiscover CNAME check to the Office 365 Exchange Domain Name Server (DNS) Connectivity Test
- Ability to link directly to a test
- Added new Mail Flow Configuration tests for Office 365
Office For Mac
Version 2.4 (June 2013)
- UI Improvements to Message Header Analyzer tool
- Microsoft Exchange ActiveSync Connectivity Tests will check only supported protocol versions
Version 2.3 (May 2013)
- Fixed minor display issues Message Header Analyzer tool and added support for localized languages
- Added new tests for POP and IMAP Email
- Fixed memory leaks that were causing timeouts and 'something went wrong' error messages
Version 2.2 (April 2013)
- Added new Message Header Analyzer tool which will quickly parse email message headers and display them in a friendlier format
- o This test is Beta and is English only for this release
Missing Localized Strings Here Office For Mac 2016 Free
Version 2.1 (February 2013)
- Added support for localized language support for 60 languages
- Updated version of the downloadable Microsoft Connectivity Analyzer v1.0 Tool for troubleshooting connectivity from the local machine
- Added Microsoft Lync Connectivity Analyzer downloadable tool for troubleshooting Lync issues from the local machine
- Added Office 365 General Tests section
- Added Office 365 Exchange Domain Name Server (DNS) Connectivity Test
Version 2.0 (November 2012)
- The new downloadable Microsoft Connectivity Analyzer Tool for troubleshooting connectivity from the local machine.
Microsoft Connectivity Analyzer Pre-Requisites
- The tool supports the following operating systems: 64bit Windows Vista, Windows 7, Windows Server 2008, Windows 8
- Microsoft .NET Framework 4.5 is required.
- Browsers requirements: The installation will work on all modern browsers. However ...
- If you are using Google Chrome, you will need to install ClickOnce for Google Chrome
- If you are using FireFox, you will need to install Microsoft .Net Framework Assistant for FireFox.
- TestOcsConnectivity.com has been merged into the Microsoft Connectivity Analyzer site and Lync tests are available in Beta form
- New Hybrid configuration Free/busy test for Office 365
- The Exchange Web Services tests can now work even with data in the mailbox
- The Windows Phone Certificate Test (part of the Exchange ActiveSync test) now recognized Windows Phone 7 certificates
Version 1.5 (August 2012)
- Improved the CAPTCHA experience when pressing enter after entering the challenge.
- Autodiscover tests now treat an HTTP 401 as a fatal error and stop further processing.
Version 1.4 (May 2012)
- We are using a new CAPTCHA service provided by an internal team.
- The challenge is NOT case sensitive, so it doesn't matter if you type upper or lower case letters. We also note this on the web page.
- The CAPTCHA challenges will not include hard to distinguish letters/numbers. For example 2 and Z or O and 0.
- If you get the challenge wrong, the password entries will not be removed.
- Once you enter a correct response to the challenge, you will be verified for a set amount of time. This means you will not see additional CAPTCHA challenges until the timeout period expires.
- The main wizard now resizes automatically to make better use of higher screen resolutions when displaying test results.
- The inbound SMTP test now inserts the IP address of the user performing the test into the test email message. The IP is also inserted into an SMTP Header (X-Originating-IP).
- Fixed an issue in the Sender-ID test where certain DNS responses while evaluating the 'exists' mechanism were incorrectly being treated as a TempError
- The outbound SMTP Sender-ID tests now conform to the RFC specified limit of ten DNS-based mechanisms that can be used during the evaluation of the SPF record.
- Fixed an issue where host names with all numbers in the top-level domain were not considered valid input
- Fixed user interface issues that can cause the 'helper bubble' to stick around when navigating in the wizard
- Added a note to the EWS service account access test indicating that the mailbox must be empty
- Changed the Windows Mobile Certificate test to warn instead of fail when certificates aren't trusted by Windows Mobile since many other devices also use ActiveSync and may trust the certificate
- Changed the Outlook Anywhere mutual authentication test to report a warning instead of an error when the mutual authentication (msstd: string) only matches a Subject Alternative Name on the certificate. Windows Vista SP1 and later can handle this configuration.
- The Outlook Anywhere Proxy Ping and HTTP Authentication Method Tests now use the full query string; this is necessary to support certain UAG configurations.
- Added additional error mappings for known issues
Version 1.3 (June 2011)
- Microsoft Exchange Remote Connectivity analyzer is now the Microsoft Remote Connectivity Analyzer. The future direction for this tool is to incorporate more products as we have done with Office 365. Thus dropping 'Exchange' from the name made sense. There are still lots of strings where you'll see ExRCA or Exchange; we're cleaning these up in a future release.
- Tabbed user-interface to support multiple products and Office 365.
- Office 365 Single sign-on validation. This test allows you to validate identity federated scenarios with Office 365. Specifically, this new test targets the 'Basic Authentication' federated scenario where a client sends credentials to Office 365 which in turn validates them against the on-premises ADFS server.
- Fixed an issue where ExRCA wouldn't validate certain top-level domains such as .travel and .museum.
- Added code so if the Enter key is pressed in the wizard, the default action is 'next' instead of 'previous'. Previously, this didn't work for browsers other than IE.
- Better cross-browser support, fully supporting IE8-IE9 standards mode as well as other major browsers.
Version 1.2 (Oct 2010)
- Localized the strings in ExRCA so that the user interface can be presented in the language of the user's browser. To enable this feature, use the browser's Language Preference settings to set your language order preference. Currently, the following languages are supported:
- Chinese (Traditional)
- Chinese (Simplified)
- English
- French
- German
- Italian
- Japanese
- Korean
- Portuguese
- Russian
- Spanish
- Fixed issues in the Autodiscover test where an invalid XML response was received even though the POST request was answered with an HTTP 200. (This is the bottom known issue from v1.1 below)
- Fixed certification matching issues that were causing certificate chains from some authorities to be considered invalid even though they were truly valid and trusted.
- Fixed an issue where certain Autodiscover and AirSync error responses were not being parsed correctly.
- Fixed a few unhandled exceptions in the outbound SMTP test.
Missing Localized Strings Here Office For Mac 2016 Download
Version 1.1 (May 2010)
- Session timeout page properly clears the session when using browsers other than Internet Explorer.
- Each protocol now uses a proper HTTP verb when performing the HTTP Authentication methods test. For instance, this means that the Outlook Anywhere test now sends an RPC_IN_DATA request instead of a GET. This previously caused requests to fail through some reverse proxies and firewalls which limited the HTTP verbs that could be used to an expected subset.
- Each HTTP request now includes an appropriate User-Agent header with the request.
- ExRCA will now detect if you have 'Accept Client Certificate' or 'Require Client Certificates' enabled in IIS when it is inappropriate.
- The URL Validator now allows domain names that start with numbers.
- A help icon has been added to the top right of the page that links to the TechNet documentation for ExRCA.
- Fixed a known issue where ExRCA would report an error and terminate the test execution when no authentication methods were selected in IIS.
- Fixed an issue in the EWS Synchronization tests where all events are not returned on the first call to GetEvents.
Version 1.0 (October 2009)
- Updated interface for a more pleasing experience
- We heard lots of feedback that the old CAPTCHA (the hard to read words that make you prove you are human) implementation was very difficult to read, especially for people who are color-blind. We implemented the Windows Live version of CAPTCHA which should make this easier.
- We added two more tests to the tool
- Exchange Web Services - This allows you to perform connectivity testing for Exchange Web Services client such as Entourage. Developers can also use the Service Account Verification test to ensure things are configured and working properly for access with an alternate account or ExchangeImpersonation.
- Outbound SMTP - Performs Reverse DNS testing, DNS RBL Checks, and SenderID validation against a provided 'outbound' IP address
- Updated the Outlook Anywhere test logic to work with Exchange 2010
- Do people really read these 'release notes'? Let us know if you do!
- Added a link in the footer to the Remote Connectivity Analyzer TechNet forum
- Modified the input pages for Outlook Anywhere and ActiveSync to allow you to chose Autodiscover or manually specified server settings in one place instead of having to run two different tests.
- Added a password confirmation text box to ensure the proper password was entered before running a test. This will reduce the number of tests that fail simply due to a typo in the password.
Version 0.6.1 (June 2009)
- Fixed issues where the SSL Certificate Trust logic was failing with 'PartialChain'. On Windows-based tests, we now warn instead of fail if we are unable to build the chain without the Crypto API's 'Root Certificate Update' functionality.
Version 0.6 (May 2009)
- Added version information to the footer and a change log history so you can read what's new!
- Added some graphics and separated out the tests for better usability. Hope you like it.
- Added the ability to 'Warn' in certain scenarios. Previously, we only Succeeded or Failed. Currently, the warnings are within the details of the tests and are not summarized in the overall results. We plan on adding the ability to indicate warnings in the summary in a future release.
- Added Warning scenario where the authentication method on the Microsoft-Server-Activesync vdir was set to 'Windows Integrated' (Since WM6+ phones work in this configuration but many other devices don't). Instead of failing the test, we will succeed and the individual test within the details will indicate a warning.
- The throttling error message should be clearer. That's right, we only allow a single test per domain to be completed every 30 seconds.
- Now consistent with the Outlook behavior to not use RPC mutual authentication when the Autodiscover service returns the word 'none' for the CertPrincipalName.
- Added additional detail in the SSL Certificate Validation and show each test for validity (name, trust, and date).
- Added logic to the ActiveSync SSL Certificate Test to which versions of Windows Mobile will trust the certificate issued.
- Added logic to the ActiveSync SSL Certificate Test to look for missing certificates in the chain sent down by the server like SSLChainSaver.
- Added additional details to the SMTP Test when an SMTP Error code is returned by the remote server. Now you can see the SMTP status code in every case.
- Modified the SMTP Test Message to include additional text. Hopefully this will reduce the likelihood of the test message being classified as spam.
Version 0.5 (March 2009)
Missing Localized Strings Here Office For Mac 2016 Download
- Initial Beta Release