Security Now!: The Windows MetaFile Backdoor?
Jan 16, 2006, 17:00 (24 Talkback[s])
(Other stories by Leo Laporte, Steve Gibson)
[ Thanks to Chris and Zeek Greko for this link.
"Leo and I carefully examine the operation of the recently
patched Windows MetaFile vulnerability. I describe exactly how it
works in an effort to explain why it doesn't have the feeling of
another Microsoft 'coding error.' It has the feeling of something
that Microsoft deliberately designed into Windows. Given the nature
of what it is, this would make it a remote code execution
'backdoor.' We will likely never know if this was the case, but the
forensic evidence appears to be quite compelling..."
[Editor's Note: Commentary on open source can be found near
the end of the transcript/podcast. -BKP]