Did it work for you?

The issue: Big, nasty demon stomps across the Internet and breaks your PC.

The solution: Unregistering a DLL until Microsoft can make it all better.

The top tip: Using hardware-enforced DEP seems to kill the .WMF attack.

The problem: George Ou didn't like this top tip.

Sunbelt just reiterated what they said about hardware enforced DEP.

And all I can really do is confirm that (on my test box), hardware enforced DEP does indeed stop the install dead in the water. If this is because my testbox is a mutant and no-one else has a PC like mine, I apologize!

The icing on the cake? After George went and got all angry in his online journal about it, he only went and retracted a "fix" for this exploit that he seemingly posted without first testing!

What, you "linked to a fix because other sites were linking to it too"? What a bizarre thing to admit to. In effect, someone could have put any old garbage up as a "fix" and done shedloads more damage to an end-user's machine all because you helped spread it! Sorry man, but posting advice to goose around with the registry can be a very bad thing. And just because the "unregister your DLL dude" says so, doesn't mean there's no need to try it out just in case.

Whoops.

As for the hardware enforced DEP? Well, I'm no expert on the subject - all I can do is say what happens before me. And what happened, was a big pile of nothing when I tried to infect myself.

I'm curious to know what results other people have had with this.