Hacker Script Attempts To Exploit Microsoft Backdoor

Microsoft recently issued a Security Bulletin that details the nature of the security hole and also a fix for the problem. For the link to the bulletin click here.

Microsoft states that the vulnerability lies in the server-side component, "dvwssr.dll", which is vulnerable to a buffer overrun attacks.

The Test Center is currently seeking the assistance of Microsoft and anyone that can successfully demonstrate how the security hole can be exploited.

The Test Center found a Perl script on the Web that appears to have been authored by the same individual who originally reported the flaw to Microsoft. However in attempting to execute the Perl script, Test Center Engineers ran into syntax errors in the script as well as un-resolved external references.

In a preliminary examination of the script, it appears that "dvwssr.dll" is used to invoke an http request to retrieve a file over the Web. The script also appears to perform some length related activity on the key variable using a value of "Netscape engineers are weenies!".

Microsoft has claimed that there is no backdoor password to this security hole. Although the Test Center cannot guarantee the authenticity of the script, it does bring question as to why the statement regarding Netscape engineers is used at all within the script if not to trigger some event.

The Test Center has released the Perl script to the public (see below) in hopes of starting an active forum regarding the script and means to exploit the security hole.

View the source text file here.

View the updated source text file.