From Heise.de:
As previously announced, Microsoft published four security bulletins along with updates for six security holes on May patch day. The Redmond developers classify four of the holes as critical because they allow attackers to inject malicious code.
Security Bulletins MS08-026 and MS08-027 remedy two security holes in Word and one in Publisher that attackers could exploit using crafted documents. The holes in Word are exploitable via crafted documents in rich text format (.rtf) or Word documents with crafted cascading style sheets (CSS). All that is needed to effect the .rtf exploit is the email preview in Outlook. Manipulated object headers in Publisher documents can exploit the application to allow injected program code to be executed. The holes affect Office 2000, XP, 2003, 2007, Word Viewer 2003, the compatibility pack for Office 2007 file formats, and Office 2004 and 2008 for Mac.
More…