The host is installed with Microsoft Word 2007, 2010 or Office Compatibility pack and is prone to an invalid index remote code execution vulnerability. A flaw is present in the applications, which fail to handle specially crafted Office files. Successful exploitation could allow attackers to execute arbitrary code.