[IP] more on Steve Gibson: MS WMF is a Backdoor, Not a Coding Mistake
Begin forwarded message:
From: security curmudgeon <jericho@xxxxxxxxxxxxx>
Date: January 13, 2006 6:27:51 PM EST
To: David Farber <dave@xxxxxxxxxx>
Cc: ip@xxxxxxxxxxxxxx
Subject: Re: [IP] Steve Gibson: MS WMF is a Backdoor, Not a Coding
Mistake
As Randal Schwartz points out, this vulnerability affects WINE. If it
affects an opensource project that is based off Windows API
documentation,
and not Microsoft code .. it seems very unlikely this is an intentional
backdoor.
WINE info:
http://www.winehq.com/
H D Moore discovers WINE is vulnerable:
http://archives.neohapsis.com/archives/dailydave/2006-q1/0021.html
Gentoo confirms WINE is vulnerable:
http://www.gentoo.org/security/en/glsa/glsa-200601-09.xml
From: Randal L. Schwartz <merlyn@xxxxxxxxxxxxxx>
To: Morning Wood <se_cur_ity@xxxxxxxxxxx>
Cc: full-disclosure@xxxxxxxxxxxxxxxxx
Date: 13 Jan 2006 14:31:06 -0800
Subject: Re: [Full-disclosure] Steve Gibson smokes crack?
"Morning" == Morning Wood <se_cur_ity@xxxxxxxxxxx> writes:
Morning> http://aolradio.podcast.aol.com/sn/SN-022.mp3
Morning> claiming SetAbortProc() was a purpose placed backdoor...
I've heard that WINE suffers from the same exploit. How could
it be a microsoft "conspiracy" if WINE (implemented from API docs)
does the same thing?
--
Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503
777 0095
<merlyn@xxxxxxxxxxxxxx> <URL:http://www.stonehenge.com/merlyn/>
Perl/Unix/security consulting, Technical writing, Comedy, etc. etc.
See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl
training!
-------------------------------------
You are subscribed as roessler@xxxxxxxxxxxxxxxxxx
To manage your subscription, go to
http://v2.listbox.com/member/?listname=ip
Archives at: http://www.interesting-people.org/archives/interesting-people/