thebes

No, but at this time it seems that the exploit only works if you have publicly writable webspace. Ie, the permissions on a file are 666 or 777, if you set permissions to 644 (and 755 for folders and anything executable) it does not seem that this exploit works.

You would need to be sure to do this for any webspace that your wordpress's php can access, so its important to have open_basedir restrictions in place and secure anything inside the permitted area. Also, unfortunately in means that wordpress itself can't write to that space either, so you must upload images via ftp and make template changes outside of the wordpress admin area- unless you open those permissions up again and close them when you are done. Also, be aware that there are many php options and a few would still allow the exploit.