...and that’s only so far this year. Apparently, people are using a lot of “buzzer” programs to find flaws. It took MS four months to respond to the flaw exposed by an attempted eBay auction of the details, and that’s apparently a normal response time for them.
As well as MS-Office, many web tools, iTunes & much security software has been ‘hit’ this year. I suspect that flaws in core, seldom-updated and internal chunks of software would be more disconcerting for security people.
This looks to me like a fine time to recommend using OpenOffice instead. (-: