DRM Gone Bad: Microsoft Windows

September 28, 2010 -

Microsoft has been a strong proponent of digital rights management - especially in its windows operating system - but a recent report on PC World reveals an exploit that uses the very protections the company put in place against users. The exploit involves the msnetobj.dll library, an ActiveX Network Object. The msnetobj.dll library "is intended to prevent the owner of a computer from saving or viewing certain files except under limited circumstances, and to prevent the computer's owner from disabling" the library, according to BoingBoing.

Hackers have figured out that the library is useful for attacking computers. Apparently, the file is susceptible to three different attacks - denial of service, buffer overflow, and integer overflow. These attacks can be triggered when the user is lured to a malicious website set up to exploit the file's weakness. Once in, the site can then allow a hacker to run malicious software on the target machine.

Source PC World, Boing Boing

Posted in

Comments

Re: DRM Gone Bad: Microsoft Windows

When are they gonna phase out ActiveX? It's been nothing but a hole you could drive a tank through.

Re: DRM Gone Bad: Microsoft Windows

I doubt its as much as DRM gone bad but rather complete ineptitude on MSs part to build a easy to use functional rights system that is backed up by a online community. MS shat on it since they are to busy screwing up the 360.....


I have a dream, break the chains of copy right oppression! http://zippydsmlee.wordpress.com/2010/05/21/cigital-disobedience/


Copyright infringement is nothing more than civil disobedience to a bad set of laws. Let's renegotiate them.

---

Patreon

Deviantart

Re: DRM Gone Bad: Microsoft Windows

Pretty much the word "ActiveX" is all the explanation anyone should need.

Re: DRM Gone Bad: Microsoft Windows

My first thought was "An ActiveX exploit? NO! That certainly would never happen!"

Re: DRM Gone Bad: Microsoft Windows

Wow, Microsoft better fix this up before shit hits the fan.

http://www.magicinkgaming.com/

Re: DRM Gone Bad: Microsoft Windows

I doubt they'll go out of cycle for this one; expect a patch on Tuesday the 12th.

 
Forgot your password?
Username :
Password :

Shout box

You're not permitted to post shouts.
InfophileWow, I just got an e-mailed ad from Nintendo: "FREE AC Adapter with New Nintendo 3DS XL" - So... pretending this didn't used to be normal, are we?08/04/2015 - 3:34am
MattsworknameNight man, take care08/04/2015 - 2:59am
Andrew EisenOff to bed. Play nice.08/04/2015 - 2:53am
Andrew EisenNo worries. Yeah, it's the pits. It's like "How many times do I have to tell you I'm not interested in this producer's work before you stop recommending his videos to me?!"08/04/2015 - 2:53am
MattsworknameAndrew: Sorry man, youtubes recomendations system is really crappy08/04/2015 - 2:49am
MattsworknameIp: they cite 4 chan. Enough said08/04/2015 - 2:47am
IronPatriotWhat I don't get is why anyone wants to be part of the private online army for a stalker.08/04/2015 - 2:32am
IronPatriotYes, it's pretty sad that even after GG has been exposed as a fraud designed to harass Sarkeesian, they still want to attack her. Do facts even matter anymore?08/04/2015 - 2:30am
Andrew EisenDammit. For context's sake, I watched that one Chris Ray Gun video Matt linked to and now my recommends are chockful of anti-Sarkeesian crap from the usual suspects. ARGH!08/04/2015 - 2:27am
Andrew EisenIP - Now you just essentially asked Matt the same question twice in a row. Seriously, once is enough.08/04/2015 - 2:11am
IronPatriotMattsworkname, do you have any actual evidence for your "complete bollocks" claim? Or are you making up more "facts08/04/2015 - 2:11am
IronPatriotMattswork, prove your claim that the article is "based on complete bollocks"08/04/2015 - 2:08am
Andrew EisenIP - Stop asking me the same question over and over and over and over and over and over and over and over again. It's super annoying. Especially when I've already addressed it.08/04/2015 - 2:07am
Andrew EisenMatt - How? Set aside half an hour. It's not hard if you know your history. It's just time consuming.08/04/2015 - 2:06am
IronPatriotAndrew, so you agree about the lying fraudulent nature of gamergate's origins? So supporting gamergate when it is clearly a fraud deserves to be called what it is, right?08/04/2015 - 2:06am
Andrew EisenFrom an ethics standpoint, there's nothing wrong with that article or posting news on subjects that are of interest.08/04/2015 - 2:05am
MattsworknameAndrew: the toughest thing about Gamergate is that it lacked any form of directed leadership or oganizaotion, How do you really explain something so amourphous that it leterally took months and moths to gain any real shape?08/04/2015 - 2:05am
Andrew EisenIP - A metric crap ton of history and context. GamerGate isn't hard to explain, it just takes a while.08/04/2015 - 2:01am
MattsworknameAnd ip wonders why gamergate went after sites like ARS and kotaku08/04/2015 - 2:00am
MattsworknameWow, its like ARS posted an intentially controversial article based on complete bollocks to get clicks, Imagine that?08/04/2015 - 1:58am
 

Be Heard - Contact Your Politician