Microsoft downplays the risk of an unpatched, “zero day” attack. The reported attack involves a malicious Word document, but there may be other ways of exploiting the flaw. The flaw lies in the Jet Database Engine that is used by a number of products including Microsoft Access. Microsoft is investigating whether other programs may also be exploited in this type of attack. Microsoft didnt say when — or if — it planned to patch the bug, but did not rule out an emergency patch.”]
Source: https://www.csoonline.com/article/2122664/microsoft-warns-of-new-word-attack.html