Microsoft has issued a patch for the WMF vulnerability that surfaced last week. Here’s an article about the early release and here’s Microsoft’s updated security bulletin.
Everyone should go to Windows Update and install all “high priority” updates. If you do a custom installation and see a reference to security update KB912919, that’s the patch from this evening.
If your computer is set for Automatic Updates and left turned on, it will eventually install the new patch. This one should not be delayed – do it manually!
The patch can also be manually applied from the links in the security bulletin.
Once the patch is installed, you can go back to surfing wildly and clicking with abandon. No, no, just kidding. Hang on to some of that paranoia – you can bet there will be more incidents like this one as the year goes on. Good luck!
