iDefense Security Advisory 11.10.09 – Remote exploitation of a stack buffer overflow vulnerability in Microsoft Corp.’s Word could allow attackers to execute arbitrary code with the privileges of the targeted user. This vulnerability occurs when Word parses the File Information Block (FIB) structure inside a Word document. When a malformed FIB structure is processed, a stack buffer overflow will occur which can lead to an exploitable condition. iDefense has confirmed fully patched Microsoft Word 2003 SP3, Microsoft Word XP SP3, Microsoft Word 2000 SP3 are vulnerable. Microsoft Word 2007 SP1 is not affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/82669/11.10.09-1.txt
Source: https://packetstormsecurity.com/files/82669/iDEFENSE-Security-Advisory-2009-11-10.1.html