Microsoft has released a fix for this
Any users that have installed the temp patch can use Add/Remove programs and remove
WMF vulnerability hotfixReboot if prompted
Apply the patch from Microsoft if it applies to your Operating System
Use Windows updates to receive the update or here is a direct download link
http://www.microsoft.com/technet/security/...n/MS06-001.mspxImportant note from grc.com
Link to grc.com below
Microsoft has now "reclassified" the WMF vulnerability in Windows 95, 98, and ME as non-critical (instead of just fixing it!). This means that it will probably NOT be updated and patched to eliminate the WMF handling vulnerability that those older versions of Windows apparently still have. (This vulnerability still needs to be confirmed.
So, if Microsoft does not produce an update to repair those older versions of Windows, GRC will make one available.)
Please read this link from grc.com
A temporary fix and patch are available on the same page
If it applies to your operating system, please apply it folkshttp://www.grc.com/sn/notes-020.htmIlfak Guilfanov blogPatch available on his page too
Related links
http://www.f-secure.com/weblog/archives/archive-122005.htmlhttp://isc.sans.org/diary.php?rss&storyid=994http://www.microsoft.com/technet/security/...ory/912840.mspxFor Windows 2000, XP, 64-bit XP and 2003 server:
Apply only the patch until Microsoft has released a fix <--fix now released from Micosoft
Keep checking Windows updates for the fix ppls
and of course all other High priority (Critical) updates
http://images.thetechguide.com/forum/public/style_emoticons/<#EMO_DIR#>/smile.gif\' class=\'bbc_emoticon\' alt=\'
\' />
