Microsoft is aware of the breach and has even confirmed it but has stated that it "represents very little threat." A spokesperson stated that the company had long expected counterfeiters would try every method they could think of to circumvent the safeguards. Mohanty posted a proof of concept program and showed how the WGA program can be used to generate key codes for use on illegal copies of the software.
Using a secondary Microsoft validation tool, genuinecheck.exe, he says he has made it possible for people running pirated copies of Windows to trick the safeguard mechanism and get access to content that is set aside for genuine installations only. Currently a validation check on the website is voluntary but the company has said it will probably become mandatory eventually.
Source:
rediff
Written by: James Delahunty @ 23 Jun 2005 8:57