A trigger for the MS15-130 vulnerability was made publicly available as early as yesterday. I'm again teaching this week, so I can't devote the time to it I'd like to. But unlike MS15-127 that I wrote about last week, this particular vulnerability now has a trigger available, simplifying any exploit that would be created.
The vulnerability is reported to be in usp10.dll. This DLL handles some unicode font parsing. I'll post patch differentials and maybe work on this a little bit tomorrow. I'm wrapping up the new SANS CTI class (FOR578) today and have to host DFIR Netwars tonight at SANS CDI.