There will be a configuration preference “VBAObjectModelIsTrusted” that will allow administrators to control whether or not the Office Suite will allow access to the VBA Object Model. Microsoft will be deploying this setting to the other products in Office for Mac 2019 in version 16.21². Previously, in Office for Mac, this was only implemented in PowerPoint. To turn on access, select the check box." For automation clients to access the VBA object model, the user running the code must grant access.
It is a per-user and per-application setting, and denies access by default, hindering unauthorized programs from building harmful self-replicating code. This security option is for code written to automate an Office program and manipulate the VBA environment and object model. This is locked down on Windows in the Trust Center with a setting called “Trust access to the VBA project object model.” Microsoft describes this setting here¹: "Disallow or allow programmatic access to the Visual Basic for Applications (VBA) object model from an automation client. One opportunity was the ability for office documents opened in Office for Mac to dynamically generate Visual Basic for Applications (VBA) modules. We reached out to Microsoft on these gaps and they’ve provided two additional controls for Office for Mac to better secure macOS systems. As part of ongoing security research to try and bring the security of our macOS systems in line with our Windows systems, we identified several places where Office for Mac didn’t have the same controls as its Windows sibling.
0 kommentar(er)
