as you should have heard, there’s a vulnerability in windows’ graphic rendering engine which allows remote code execution through special manipulated WMF pictures (see official advisory here).

now Ilfak Guilfanov (you might now him as author of the famous "Interactive Disassembler Pro") released a workaround in his blog, which removes the vulnerability but doesn’t disable the WMF features. you can download his patch here.
he recommends "to uninstall this fix and use the official patch from Microsoft as soon as it is available".