DRM Gone Bad: Microsoft Windows

September 28, 2010 -

Microsoft has been a strong proponent of digital rights management - especially in its windows operating system - but a recent report on PC World reveals an exploit that uses the very protections the company put in place against users. The exploit involves the msnetobj.dll library, an ActiveX Network Object. The msnetobj.dll library "is intended to prevent the owner of a computer from saving or viewing certain files except under limited circumstances, and to prevent the computer's owner from disabling" the library, according to BoingBoing.

Hackers have figured out that the library is useful for attacking computers. Apparently, the file is susceptible to three different attacks - denial of service, buffer overflow, and integer overflow. These attacks can be triggered when the user is lured to a malicious website set up to exploit the file's weakness. Once in, the site can then allow a hacker to run malicious software on the target machine.

Source PC World, Boing Boing

Posted in

Comments

Re: DRM Gone Bad: Microsoft Windows

When are they gonna phase out ActiveX? It's been nothing but a hole you could drive a tank through.

Re: DRM Gone Bad: Microsoft Windows

I doubt its as much as DRM gone bad but rather complete ineptitude on MSs part to build a easy to use functional rights system that is backed up by a online community. MS shat on it since they are to busy screwing up the 360.....


I have a dream, break the chains of copy right oppression! http://zippydsmlee.wordpress.com/2010/05/21/cigital-disobedience/


Copyright infringement is nothing more than civil disobedience to a bad set of laws. Let's renegotiate them.

---

http://zippydsm.deviantart.com/

Re: DRM Gone Bad: Microsoft Windows

Pretty much the word "ActiveX" is all the explanation anyone should need.

Re: DRM Gone Bad: Microsoft Windows

My first thought was "An ActiveX exploit? NO! That certainly would never happen!"

Re: DRM Gone Bad: Microsoft Windows

Wow, Microsoft better fix this up before shit hits the fan.

http://www.magicinkgaming.com/

Re: DRM Gone Bad: Microsoft Windows

I doubt they'll go out of cycle for this one; expect a patch on Tuesday the 12th.

 
Forgot your password?
Username :
Password :

Shout box

You're not permitted to post shouts.
Papa MidnightSpeculation from PC Gamer. Don't hold your breath. http://www.pcgamer.com/2014/07/21/microsoft-job-listing-says-nice-things-about-pc-gaming-isnt-clear-if-it-means-them/07/21/2014 - 5:58pm
MaskedPixelanteI dunno, it's probably Vevo powertripping.07/21/2014 - 5:52pm
Andrew EisenMP - Makes you wonder what the intention behind the removal was. Stop the RickRolls? Yeah, like removing that one video is going to make a difference.07/21/2014 - 3:27pm
MaskedPixelantehttp://www.billboard.com/articles/business/digital-and-mobile/6165313/youtube-blocks-original-rickroll-video Moment of silence, the original Rickroll video has been blocked in many regions.07/20/2014 - 3:53pm
PHX CorpUseless DLC news: Killzone Fart Pack http://ps4daily.com/2014/07/killzone-fart-dlc/07/20/2014 - 12:56pm
MaskedPixelantehttps://www.youtube.com/watch?v=uU1mK2ig_GU They did their research beforehand.07/19/2014 - 4:41pm
Sleaker@james_fudge - are you sure the FCC can pick and choose? the general rules I read as passed in the act don't really indicate that, but I didn't read through the entirety.07/19/2014 - 4:19pm
MaskedPixelanteOf course, Saban's entire point hinges on them not knowing what the tokusatsu genre is.07/19/2014 - 1:57pm
lomdrLink to where you saw this, Sora-chan?07/19/2014 - 1:50pm
MaskedPixelanteThis is just... confusing to me... They're not being sued, but it looks like extortion, but maybe now the devs can make demands of Saban? I dunno...07/19/2014 - 1:47pm
MaskedPixelantehttp://www.joystiq.com/2014/07/18/chroma-squad-dev-agrees-to-royalty-split-ultimatum-from-power-ra/07/19/2014 - 1:43pm
Sora-ChanSo apparently, Towns is updating again. Not sure what that means, since last we heard it got abandoned.07/19/2014 - 5:42am
Matthew Wilsonthe 10c is based of the fact that it only cost them 2c a gig to send data around to start with, and that does include infrastructure07/18/2014 - 5:24pm
Matthew Wilsonhere is the thing the average user does not use enough bandwidth to justify usage based billing at most they would be allowed to charge 10c a gig. the avrage user would need to use around 600 gigs a piece.07/18/2014 - 5:23pm
james_fudgeThe FCC can apply what rules it sees fit and ignore rules that make no sense under Title II.07/18/2014 - 4:57pm
Sleaker@MW - ahhh thanks for the info. I still don't see how Title II or reclassifying would benefit industry or do what people are asking the FCC to do.07/18/2014 - 2:43pm
Matthew Wilsonif they do, they would than be subject to the utility commission for price approval. the short answer is no because it would bring even more regulations.07/18/2014 - 1:50pm
SleakerIf Internet gets rebranded as a Title II do you think cable companies will start charging per-usage similar to every other utility?07/18/2014 - 12:57pm
MaskedPixelanteI guess 'recommiting to classic style JRPGs like the upcoming Bravely Second' is coming later, now is the time for microtransactions at a level that would make EA say "guys, take it easy on the paywall".07/18/2014 - 10:39am
MaskedPixelantehttp://www.joystiq.com/2014/07/17/final-fantasy-record-keeper-relives-the-series-battles-for-mobi/ Square is really, really, REALLY hoping you all forgot that Final Fantasy: All The Bravest was a thing...07/18/2014 - 10:36am
 

Be Heard - Contact Your Politician