The WMF vulnerability (documented by Dad29 here and here) has been patched for Windows 2000 SP4, Windows XP SP1/SP2/x64 and Windows 2003 (all versions). If you have any of those systems, run Windows/Microsoft Update immediately, then you may reregister the Windows Picture and Fax Viewer by typing regsvr32 %windir%\system32\shimgvw.dll
For those of you with Win98/ME, you’re SOL. Microsoft says that it’s not a “critical” security breach for you. And if you have NT x.x/2000 SP3 or earlier/95/3.x (the vulnerability of the last 2 are by heresay only at this point), you’re REALLY SOL; Microsoft wants your money for the newer OSes.
