A security flaw in Microsoft Word is being *actively exploited* on Windows and also affects Microsoft Office for Mac. "The vulnerability could allow remote code execution if a user opens a specially crafted RTF file using an affected version of Microsoft Word, or previews or opens a specially crafted RTF email message in Microsoft Outlook while using Microsoft Word as the email viewer."