"Microsoft Word is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.
An attacker can exploit this issue by enticing a victim to open a malicious Word file.
Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions."
Yet another vulnerability in Microsoft Office, this time using Microsoft Word as the attack vector. Apparently there's already a proof-of-concept exploit. Didn't cause my OpenOffice 2.0 to crash, though. With that being said, I still wouldn't attempt to open this document with a Microsoft application as I am not sure what the PoC might be capable of doing.