Antivirus
and security experts F-Secure have issued a warning to users of Microsoft
Windows XP that includes fully patched Service Pack 2 machines. The exploit is
carried out via WMF files carrying a zero-day WMF exploit detected as
W32/PFV-Exploit A, B, and C. According to F-Secure it is very easy to fall
victim to this exploit, especially if you are using Internet Explorer. It's as
simple as visiting an infected web site or viewing a folder with infected files
with Windows Explorer. F-Secure has informed Microsoft and while a patch is
expected to be issued quickly, they warn that Windows administrators and/or
users may want to filter all WMF files until a patch is released.
News source: F-Secure