Microsoft has published a temporary fix for the zero-day flaw which is currently being exploited via PowerPoint.
The flaw affects all Windows releases except Windows Server 2003, and can be exploited if a user is coaxed into opening a malicious Office file containing an OLE (object linking and embedding) object.
The fix, which Microsoft calls the ”OLE packager shim workaround,” is for 32- and 64-bit versions of PowerPoint 2007, 2010 and 2013.
VIEW FULL STORY