For systems that have AutoPlay disabled, customers would need to manually browse to the root folder of the removable disk in order for the vulnerability to be exploited.

FORBES: New Windows Bug Offers Hackers An Attack Shortcut