Because of this vulnerability in PEAR XML_RPC, attackers can execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.
Update the WordPress to the latest available version (at least 1.4).