A remote code execution vulnerability exists in the way that Microsoft Word handle specially crafted Word files. The vulnerability could allow remote code execution if a user opens a specially crafted Word file that includes a malformed CSS value. The risk is MEDIUM. An attacker who successfully exploited this vulnerability could take complete control of an attected system.
More...