The vulnerability can be triggered by a malformed string from within a Publisher file, and attacks may occur through email attachments or malicious web pages.
"Attackers see home users as the weakest link in the security chain and are increasingly targeting this group in an effort to profit," said Kevin Hogan, a senior manager at Symantec Security Response.
"Considering the minimal amount of victim cooperation required to exploit this vulnerability, Symantec advises Microsoft users to avoid opening Publisher or any other Microsoft Office documents from unknown sources."
Symantec also urges IT administrators to evaluate the impact the vulnerabilities could cause, plan a response and take steps to protect their network.
IT managers should also remind users to exercise caution in opening all unknown or unexpected email attachments, or following links from unknown or unverified sources.
Freshly launched 11nm Qualcomm silicon will come with Adreno 612 GPU
Are pinning down the exact rate of expansion of the Hubble constant
RISC OS 5 to form the basis of RISC OS Open after Castle Technology sells to RISC OS Developments
A smartphone maker fiddling its benchmarking scores? That's unusual, isn't it?