• Microsoft Office 2003 Service Pack 2
• Microsoft Office 2003 Service Pack 3
• Microsoft Office XP Service Pack 3

This vulnerability could allow remote code execution if a user opens a specially crafted MS Word file. Successfull exploitation of this vulnerability could allow an attacker to take complete control of an affected system, that is, install programs; view, change, or delete data; or create new accounts with full user rights. Users configured to have fewer administrative priveleges could be less impacted than users who operate with full administrative user rights.

Patches for this vulnerability can be downloaded on this Microsoft Web page.

Microsoft recommends using Microsoft Office Word 2003 Viewer or Microsoft Office Word 2003 Viewer Service Pack 3 to open and view Microsoft Word files. It is also advised to not open or save Microsoft Office files received from untrusted sources or received unexpectedly from trusted sources. This vulnerability could be exploited when a user opens a specially crafted file.