Microsoft Office 2007 SP3 allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."
http://www.securitytracker.com/id/1033239
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-081