The official Security Advisory for the WMF vulnerability is located here:
There are several options available on the advisory page but apparently a patch is slated for release next week. It’s currently built and being tested internally and with certain test customers.
"Microsoft recommends that customers download and deploy the security update for the WMF vulnerability that we are targeting for release on Jan. 10, 2006"
kurtsh
Kurt Shintaku's Blog 