do not use word as a maileditor, thanks
from the internet storm center
Jim Slora reported on the Intrusions list that malware installer emails are now making use of an OBJECT tag vulnerability in MS Outlook in the event that the malicious email is forwarded to another person and the initial recipient uses Microsoft Word as their editor.http://secunia.com/advisories/12041/ and http://lists.sans.org/pipermail/intrusions/2005-January/0...
The malware will then be executed without warning (even on XP SP2) in the local computer's trusted zone. There currently is no patch for this issue, so please don't use Word as your email editor if you like to forward messages to others!