Good afternoon Everyone. I have been receiving a lot of email's on this one. While I was looking at some great utilities at www.sysinternals.com, I discovered that Mark Russinovich commented in fantastic technical detail of the recent WMF vulnerability.
The bottom line of Mark Russinovich’s entry is that the behavior of the WMF, while intentional, IS NOT A SECRET BACKDOOR.
I highly encourage to read the full article here:
Mark Russinovich’s blog entry on the WMF vulnerability: http://www.sysinternals.com/blog/2006/01/inside-wmf-backdoor.html
Additionally Microsoft’s Stephen Toulouse also de-bunked the claim here as well: http://blogs.technet.com/msrc/archive/2006/01/13/417431.aspx
To get the patch/update for the Windows Meta File (WMF) vulnerability and to learn more take a look here: http://www.microsoft.com/technet/security/bulletin/MS06-001.mspx
Also keep up to date with Security Bulletins here: http://www.microsoft.com/technet/security/current.aspx
Please take a look at those posts to learn more!