A patch has been issued and will be included in automatic updates from Microsoft for those with obsolete OS versions affected.

As already noted, only WinXP and Server2003 and earlier (those using Visual Basic for Help files) are affected, and thus far no "public exploits" have been seen.

John