Zero Day Initiative Advisory 10-069 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. Exploitation requires user interaction in that a victim must open a malicious PUB file. The specific flaw exists within the code responsible for converting files from the Publisher 97 format. While processing a TextBox item, several programming errors can be triggered allowing a maliciously created publisher file to execute arbitrary code under the context of the user opening the file.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/88331/ZDI-10-069.txt
Source: https://packetstormsecurity.com/files/88331/Zero-Day-Initiative-Advisory-10-069.html