Campus Technology is reporting that hackers are exploiting a vulnerability in Microsoft Word that allows malware to be downloaded. The vulnerability is not associated with macros, as many in the past have been. The new exploit allows a the download of malicious HTML applications from a server which is disguised as a Rich Text document. A malicious script then is used to install malware.
For more information see:
EducationDive: Microsoft Word is the latest frontier for hackers