If you haven't heard by now, there is an unpatched exploit in how Windows handles WMF files. Since this handling is done with System level privileges, you guessed it, complete control of the system. Secunia sent out an advisory this morning and I noticed that Sunbelt Software had posted about it in their blog.
Sunbelt Software Blog (with example)
IT Security, MySQL, Perl, SQL Server, and Windows technologies.