WMF vulnerability was a deliberate backdoor?

To: <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: WMF vulnerability was a deliberate backdoor?
From: "Brooks, Shane" <SBrooks@xxxxxxxxxxxxxx>
Date: Fri, 13 Jan 2006 14:31:16 -0500
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Thread-index: AcYYd+vNtUu4NyJ+QpCjuCZ90XiqoA==
Thread-topic: WMF vulnerability was a deliberate backdoor?

I've recently had my attention brought to a post from Steve Gibson in the 
grc.com forums, which contains the following quote:

<snippet>
        The only conclusion that can reasonably be drawn is that this 
[setAbortProc procedure] 
was a deliberate backdoor put into all of Microsoft's recent editions of 
Windows.
</snippet>

full article here:
http://www.grc.com/x/news.exe?cmd=article&group=grc.news.feedback&item=60006

thoughts?


Shane



_________________________________________________________

The information contained in this message is privileged, confidential and 
intended only for use of the individual or entity addressed above.  If you 
have received this communication in error, please immediately notify us
by reply and delete the same.  Thank you.

Follow-Ups:
- Re: WMF vulnerability was a deliberate backdoor?
  - From: Gadi Evron
- Re: WMF vulnerability was a deliberate backdoor?
  - From: Mike Ely
- Re: WMF vulnerability was a deliberate backdoor?
  - From: Steve Friedl
- Re: WMF vulnerability was a deliberate backdoor?
  - From: Denis Jedig

Prev by Date: MyBB 1.0.2 SQL injection in usercp.php
Next by Date: MyBB 1.0.2 SQL injection
Previous by thread: Re: MyBB 1.0.2 SQL injection in usercp.php
Next by thread: Re: WMF vulnerability was a deliberate backdoor?
Index(es):
- Date
- Thread