Microsoft has posted a warning to all users of Windows Vista, Windows Server 2008, and Office version 2003 through 2010, and all supported versions of Microsoft Lync that these products are currently under attack. Primarily, located in the Middle East and South Asia right now, the situation is dire enough that Microsoft is releasing a Security Advisory (2986666) to help mitigate the effects until a proper security update is available. Which means that the exploit may spread quickly, beyond the confines of Europe.

The new Security Advisory includes a Microsoft Fix It solution for those who can access the web site and run the supplied code.

The vulnerability requires end-user interaction through clicking on a Microsoft Word document attached to an email.

Read the announcement: Microsoft Releases Security Advisory 2896666

Visit the Security Advisory:  Vulnerability in Microsoft Graphics Component Could Allow Remote Code Execution