New WordPad Text Converter 0-day Exploit

On the same day at 5:58 PM, Trendlabs recieved a sample that exploits this vulnerability. The said exploit arrives as a specially-crafted .DOC, .WRI, or .RTF file.  It causes WordPad Text Converter to crash once the user views the file, thus allowing a remote malicious user to control the affected system.
 
The WordPad Text Converter for Word 97 files on the following OSes are affected:
    Windows 2000 Service Pack 4,
    Windows XP Service Pack 2,
    Windows Server 2003 Service Pack 1,
    Windows Server 2003 Service Pack 2
 
The sample that was received drops a possible malicious file %User Temp%NOTEPADE.EXE. (This is still being verified).
 
(Note: %User Temp% is the current user's Temp folder, which is usually C:Documents and Settings{user name}Local SettingsTemp on Windows 2000, XP, and Server 2003.)
 
Note:  As of December 12 , 2008  5:21 PM (GMT +8) Microsoft does not have any patch on this exploit.
 __________________________________________________________________________________
 
Recommended Action
 
On December 12, 2008 at 12:18PM, Virus pattern file 5.705.00 has been released which includes the detection for TROJ_MCWORDP.A
 
Please make sure that you are on the latest pattern file.
More detailed description of this malware can be found at the following link:
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=TROJ%5FMCWORDP%2EA