Thanks mr.mark, I didn't know that. Will put it to use.
Now something for all NETSCAPE WEENIES<g>.
=========
Microsott studies flaw in its Internet software
The Associated Press
SEATTLE - Microsoft Corp. to-day said that a security flaw in its Internet software, previously thought to have been deliberately placed there by engineers, was simply the result of old software code. Scott Culp, a manager for Microsoft's security response team, said the firm discovered that the 5-year-old piece of code gave some users
access to Web site pages housed on the same server computer.
However, Culp denied previous reports that the hole was falsely placed there by Microsoft employees. Culp told The Associated Press that the only deliberate act by Micro-
soft engineers was substituting certain file names with the phrase, "Netscape engineers are weenies!"__ a reference to Microsoft's arch-rival for Internet software. The Wall Street Journal reported today that the security hole ap-
peared to be a deliberate "back- door" which could potentially give users access to sensitive information.
Culp said the potential for the distribution of sensitive data was there, but only by users who already have
permission to use the server computer to actually change the content of Web pages. People simply accessing the Web page through the Internet could not easily gain access to
any other data on the server, he said. There have been no reports of site access through the code.
The flle, called "dvwssr.dll" is installed on Microsoft's Internet-server software with Frontpage 98 extensions. The "weenie" comment is not a password to access anything
on the file - it's simply something a prankster added, Culp said. Spokesman Dan Leach said any company employee who adds unauthorized code to any Microsoft product runs the risk of being fired. Microsoft urged customers to delete the file and planned to warn customers with an e-mail bulletin and an advisory published on its corporate Web site this afternoon.
===========
In local paper 4/15/2000
Regards to all u NSCP weenies <G> /jw |
