WMF Vulnerability is an Intentional Backdoor?

An anonymous reader writes "Steve Gibson alleges that the WMF vulnerability in Windows was neither a bug, nor a feature designed without security in mind, but was actually an intentionally placed backdoor. In a more detailed explanation, Gibson explains that the way SetAbortProc works in metafiles does not bear even the slightest resemblance to the way it works when used by a program while printing. Based on the information presented, it really does look like an intentional backdoor." There's a transcript available of the 'Security Now!' podcast where Gibson discusses this.

Move along, Move along

[XFilesFMDS1013]

Nothing for you to see here. Please move along.

Now there's a feature.

A link to his....

[p.rican]

site containing his evidenence/proof that this vulnerabilty is there on purpose.

here

Re:I would not be suprised at all.

[Reziac]

Thanks, it wasn't linked from TFA page, far as I saw (tho by then my brain was glazing over :)

Re:I would not be suprised at all.

[Jesus_666]

I'm reminded of how malicious code can be embedded in the comment field of GIFs, and executed by an accomplice program... that exploit was never seen in the wild either, but has been known about for as long as GIFs have existed. Was it part of a grand conspiracy to force us all to subscribe to Compu$erve?? ;)

Yes, but AOL sent a team of shadowrunners to the Compuserve headquarters to geek the coders responsible for writing the backdoors. After the mage was done manabolting everyone in the office and the decker had copied and deleted the project's entire codebase Compuserve was forced to give up that particular matrix domination scheme.
AOL would be the good guys here but they decided to pay the runners in lead. Never trust a Johnson, chummers, I tell you...