VUPEN Vulnerability Research Team discovered a critical vulnerability in Microsoft Office Word. The vulnerability is caused by an array indexing error when processing BKF objects in a Word document, which could be exploited by remote attackers to execute arbitrary code by tricking a user into opening a specially crafted Word file.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/94783/vupen-msowbkfoai.txt
Source: https://packetstormsecurity.com/files/94783/VUPEN-Security-Advisory.html