Russinovich and the WMF Flaw (MS06-001)


I’m not 100% sure why no-one seems to have picked up on this, Russinovich decided to do his own analysis of the WMF flaw to see if Gibson’s belief that WMF/SetAbortProc() is an intentional backdoor. Of course, it’s not!


Here’s Mark’s analysis: http://www.sysinternals.com/blog/.

Comments (6)

  1. steven says:

    Slashdot has picked up on it earlier on Friday:

    http://it.slashdot.org/article.pl?sid=06/01/20/0641235

  2. michkap says:

    If I had to guess, it is most likely that people figure that had Steve Gibson been right (the law of averages suggests that this will happen at some point!) it wouldn’t really help Microsoft’s cause to deny it since people who believe Steve will assume the denial is part of the ‘evil plot’ of the the ‘evil empire’. Much better sometimes to let others notice. :-)

    Oh, I’ll also add the specific link so that people can find Mark’s analysis after later posts scroll it:

    http://www.sysinternals.com/blog/2006/01/inside-wmf-backdoor.html

  3. pl says:

    Well, it got slashdotted Friday morning, so I wouldn’t quite say nobody picked up on it.

  4. Rory says:

    Erm – I think it has been all over the usual places. Even slashdot had some chat on it.

    To be honest, Steve Gibson was shouting so loud, it wasn’t surprising someone would actually go in and find out what all the fuss was about:-)

  5. I thought it was obvious, because is NOT against Microsoft, slashtrolls only pick on stuff that is anti-MS