iDefense Security Advisory 08.10.10 – Remote exploitation of an memory corruption vulnerability in Microsoft’s Office RTF Parsing Engine could allow an attacker to execute arbitrary code with the privileges of the current user. During the processing of a RTF document containing certain control words, the RTF parsing engine may incorrectly read a value from the RTF file. This value may directly affect the control of execution flow within the RTF parsing engine.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/92763/08.10.10-2.txt
Source: https://packetstormsecurity.com/files/92763/iDEFENSE-Security-Advisory-2010-08-10.2.html