http://www.microsoft.com/technet/security/bulletin/ms06-001.mspx
will list the specifics for this latest patch from MS that is now available.

buf--forgive me, but just to avoid confusion, this is the same patch already mentioned yesterday, such as through Windows Update or at the site mentioned here
http://discussions.virtualdr.com/showpost.php?p=1018407&postcount=26
So if this patch has been installed, nothing further is necessary (at least I hope so). :)

Thanks for the tip Jim. With everyone so up-tight about this little jewel, I just overlooked that thread yesterday. Glad that we have it installed.

EDIT: Just re-read that thread---it was posted at 3AM today!!

It is not over until the ... sings
http://www.informationweek.com/news/showArticle.jhtml?articleID=175802831

...and there's no *** lady in sight.....gee willikers...
so how does one disable the windows fax viewer?

This business has at least prompted MS to look for similar flaws in it's code:

http://news.com.com/Microsoft+to+hunt+for+new+species+of+Windows+bug/2100-1002-6024778.html?part=dht&tag=nl.e433

poppy4--If you run a search on this BBS you will find that a fellow named Ilfak had written a fix which everyone acknowledged was the best.
http://www.hexblog.com/2005/12/wmf_vuln.html#more
But then he withdrew it when MS came out with its patch.
I however, still have a copy of the fix. Do not know if it is OK for me to distribute it.
In any event my ability to upload files here is all messed up.
I will have to ask a mod for help.

P.S. The other solution was to disable the shimgvw.dll file (Windows Picture and Fax Viewer). But it was found that caused problems of its own.

P.P.S. There is a new MS Critical Update out today, but for a different issue.

Thanks Jim
I had the fixes installed, first the dll and later Ilfak's, and removed both after installing the MS patch. So I take it that nothing more can/should be done at this point.?
The Ilfak vulnerability check shows I am not vulnerable.

poppy4--So I take it that nothing more can/should be done at this point.?
The answer is I do not know.
If the http://www.informationweek.com/news/showArticle.jhtml?articleID=175802831
article is to be believed, you are not fully protected. If you still have Ilfak's executable, I have no idea if you would be better off uninstalling the MS patch and then reinstalling Ilfak's.

hmmmm...I think I'll leave well enuf alone for now and wait until something definitive is further posted by MS, Ilfak, or whomever.
:)