Microsoft released Security Advisory 2719615 which relates to a Remote Code Execution issue involving MSXML Core Services 3.0, 4.0, 5.0, and 6.0. The vulnerability affects all supported releases of Microsoft Windows, and all supported editions of Microsoft Office 2003 and Microsoft Office 2007.
The notice of the Security Advisory was buried in the MSRC Blog post about the Certificate changes and June Security Bulletins. Links to the KB Article with the Fix it Solution, MSRC Blog post, etc. are available in my post at Microsoft Security Advisory 2719615 + Fix it Solution.