Here: http://news.com.com/2100-1009_3-5070929.html?tag=fd_top
From the story:
"As detailed in Microsoft’s security bulletin, a malicious user could create a document with a VBA application that’s designed to overflow the buffer–the chunk of memory that’s allocated to a program–and then run other code.
The flaw affects recent versions of Office applications that support VBA scripting, including the 2002, 2000 and 97 versions of Access, Excel, PowerPoint and Word. It can also be used with Project 2002 and 2000, Visio 2002 and 2000 and Works Suite 2002, 2001 and 2000. "
Security? What dat?