Malicious hackers have exploited the new Windows Meta File vulnerability to create a range of Trojan programs. The vulnerability, which exists in machines running Microsoft Windows XP with SP1 and SP2, and Microsoft Windows Server 2003, can be exploited by tricking victims to view specially constructed sites, especially where IE is used as a browser.
Windows PCs infected by malware from the Trojan-Downloader Agent-ACD family are liable to download other malware programs onto a compromised machine
Kaspersky advises users not to open untrusted files with a *.wmf extension.