-
Hey, guest user. Hope you're enjoying NeoGAF! Have you considered registering for an account? Come join us and add your take to the daily discourse.
Ubisoft DRM features exploit that allows arbitrary code execution (update: patched)
- Thread starter The Orange
- Start date
To be fair, as I said before, Ubisoft does treat PC gamers like shit regarding DRM, so the "quickfire reactions" are understandable. I don't get the comments about having to reinstall/format Windows.
What are you talking about? He said if a game is to use DRM it's better to use Steam, and there are a whole host of reasons for that. You're just talking past the point being made.
Besides, your claim is not really clear cut. EU probably will have something to say about that.
The Orange
Member
The exploit enables root access and remote code execution, in various shapes and sizes. It's easy to disable, but doesn't change the fact that by default, millions of PCs right now are vulnerable to getting fucked. If Ubisoft is fast enough, the real world damage will be minimal, aside from consumer confidence, but this isn't as innocent as you make it out to be. Added your fix to the OP.
Sir_Crocodile
Member
So this thing gives elevated access to windows?
SapientWolf
Trucker Sexologist
Why didn't Firefox complain when Ubisoft's software installed this insecure browser plug-in without my consent? Seems like that's a huge potential security hole.
A "No DRM" future is nothing but delusional. Since copy protection isn't suddenly to vanish, it makes more sense to praise DRM done right than complaining about every DRM like an narrow-minded grandpa.
Basileus777
Member
I don't see any Ubisoft or Uplay related plugins on Firefox and I definitely installed and played Settlers 7 on this PC.
Reinstalling/formatting is the default internet response to PC troubleshooting and its a thing that really needs to stop.
Sir_Crocodile
Member
GOG seems to do ok without it
HP_Wuvcraft
Banned
Yeah, if by "okay", you mean trying to sue the fuck out of the planet.
Oh hey, you edited that darn quickly.
I just did a really quick test over here. What it appears to do is launch the Ubiplay launcher, with the specified parameters, so in theory you could run a command to download an payload, but I think it stays on the access level of the browser. But again, this is just the impression I got from the quick test.
I think anything that installs the Ubiplay 2.0 is vulnerable. The last thing I played over here from Ubisoft was Anno 2070, and the plugin was present.
Yes, all that hard work for you when other people are re-installing.
The Orange
Member
Yeah, the original post is just a proof of concept. Like I said, hopefully Ubisoft reacts quickly, before someone start tweeting "New Ass Creed 3 trailer!! *malicious link*" and people get screwed.
Holy Order Sol
Member
goddamnit the guy says he gets it he even agrees with you just drop it
Basileus777
Member
So if Settlers 7 didn't install this as of a few months ago, all of the games listed in the OP's link don't seem to have the rootkit. I wonder what the cutoff point is.
HP_Wuvcraft
Banned
Are you... supporting the igorance of the situation just because you dislike DRM?
Sir_Crocodile
Member
Speed of light baby
"... a recent decision to ban a user account has reminded us all we dont technically own the games bought through the service. If your account is banned, you cant login and play your games. All that money you spent on tens, or even hundreds of titles doesnt count for anything."
http://www.geek.com/articles/games/steam-proves-we-dont-own-the-games-we-buy-2012021/
There's a reason why publishers don't put their most recent games on the service.
SapientWolf
Trucker Sexologist
Assuming Windows 7 or Vista, how does it give elevated access to Windows if the Uplay application isn't configured to run with admin rights? I thought UAC was designed to prevent that exact situation.
Because they only just moved into having new games as well?
Visualante2
Member
That is because they are stupid.
DRM does not work, just about every game has been cracked, most of them quickly around release.
Sir_Crocodile
Member
Because it gives them an extra 4 hours before a hacked version turns up?
Assuming it hasn't been hacked before the official street date
Re-installing isn't a fix, its a work around. It doesn't make sure the same fault won't return. Trouble shooting it and adressing it correctly prevents the same issue arrising.
I remember a time Warcrat 3 would randomly stop working. The typical internet response to fixing was, re-install, reformat, defrag. Which I did and the issue returned. 2 years after the fact it seems it was just missing a .dll file and the lengthy process of reformatting was clearly never needed.
GoofsterStud
Member
This plug-in is technically a rootkit since it allows privileged access at will.
Definition:
"A rootkit is a stealthy type of malicious software (malware) designed to hide the existence of certain processes or programs from normal methods of detection and enable continued privileged access to a computer."
It might not be he stealthiest, but it's not obvious. Hijack this can also detect Uplay. *Shrug*
Definition:
"A rootkit is a stealthy type of malicious software (malware) designed to hide the existence of certain processes or programs from normal methods of detection and enable continued privileged access to a computer."
It might not be he stealthiest, but it's not obvious. Hijack this can also detect Uplay. *Shrug*
Of course, but then I'd demand my money back unless they had a damn good reason for locking me out of my games... I don't cheat or hack my games, I'm generally a nice fellow with other people, and save for Steam's potential demise, I don't think I wouldn't have access to Steam. I also don't usually pay more than $2.50 per game I buy as I buy most of the current generation games on my consoles.
In addition, I have DRM-Free copies of many of my games, and I also use GOG and Desura for games. However, in terms of services that actually have DRM, Steam is second-to-none, and unless Ubisoft decides to put their modern catalog on GOG, they, like every other big name publisher, are probably going to force DRM into their games. In that case, I would prefer said DRM to be Steam.
I could understand a small delay (week or so) for the DRM free versions to come out (due to trying to stop day one piracy), but leaving heavy DRM on games months or years after they have been cracked hurts no one bar the people buying the damn game.
No, a rootkit acts a bit like a man in the middle attack, intercepting and modifying code to hide itself from the user and other programs and to change anything it wants.
No, a rootkit acts a bit like a man in the middle attack, intercepting and modifying code to hide itself from the user and other programs and to change anything it wants.
GoofsterStud
Member
There is more then one definition to a Rootkit. I am not reading anything in this text book that specifies the kernel. I see most commonly associated.
I don't see how that confirms Valve (and other publishers) can just take away all your games and get away with it. EULA doesn't dictate the ownership of licensed products, it's more complicated. See recent European court ruling allowing re-sale of licensed software, for example.
Visualante2
Member
Would imagine that this is a purposefully designed "feature", someone on the hackernews link is reporting the same behaviour with the Firefox version of the plugin, so it's not just ActiveX and Chrome. They don't seem to be arguing about the definition of rootkit over at that link, and I trust they know what they are talking about. They are more concerned that this was published and Ubisoft won't be able to patch it quickly.
Takes 15 minutes to re-install Windows, takes a helluva lot longer to troubleshoot on your own, unless you sponge off the internet of course for a solution which rarely pops up until days / months later. Re-installing is a fix, helps in 99% of situations and in 96% it's a permanent solution*.
*Numbers may vary
Zero-Crescent
Member
As if we needed any more signs that the U stands for "Useless."
Rawket Lawnchair
Member
So how can I disable the plug-in on Chrome?
Nemesis_
Member
did you read the OP? =/
That was back in February. The EU Court's decision last month supersedes it, at least in the EU.
All we need is someone brave, rich and handsome enough to challenge Valve et al over it.
Rawket Lawnchair
Member
Yes, OK, sorry, I didn't figure I was supposed to write "about
lugins" in a new tab's address.