gfxgfx
 
Please login or register.

Login with username, password and session length
 
gfx gfx
gfx
76793 Posts in 13502 Topics by 1651 Members - Latest Member: Arnold99 November 22, 2024, 12:59:52 am
*
gfx*gfx
gfx
WinMX World :: Forum  |  Discussion  |  WinMx World News  |  Sony Opens Doors To Hackers Again
gfx
gfxgfx
 

Author Topic: Sony Opens Doors To Hackers Again  (Read 1117 times)

0 Members and 1 Guest are viewing this topic.

Offline GhostShip

  • Ret. WinMX Special Forces
  • WMW Team
  • *****
Sony Opens Doors To Hackers Again
« on: December 08, 2005, 04:40:23 am »
Why do they bother ???

http://news.com.com/New+Sony+CD+security+risk+found/2100-1002_3-5984764.html

Quote
Sony BMG Music Entertainment and the Electronic Frontier Foundation digital rights group jointly announced Tuesday that they had found, and fixed, a new computer security risk associated with some of the record label's CDs.

The danger is associated with copy-protection software included on some Sony discs created by a company called SunnComm Technologies. The vulnerability could allow malicious programmers to gain control of computers that have run the software, which is typically installed automatically when a disc is put in a computer's CD drive.

The issue affects a different set of CDs than the ones involved in the copy-protection gaffe that led Sony to recall 4.7 million CDs last month, and which has triggered several lawsuits against the record label
The patch can be downloaded from Sony's site. A list of the CDs affected in the United States, and a slightly different list in Canada, is also posted on the site.


Meanwhile back in reality land ...

http://www.slyck.com/news.php?story=1017

Quote
MediaMax executes a program called “MMX.exe” every time you run a CD with SunnComm’s copy protection. A devious individual could replace the MMX.exe file with a malicious version. With full administrator privileges enabled, there is no limit to what damage can be accomplished. One could insert this malicious software physically when the administrator is away, or by creating an email trojan and hope someone takes the bait. The end result could leave your computer open to very serious localized security issues. And if someone is truly malicious, he or she could craft a more wide spread problem.
In the entire month this Sony-BMG DRM fracas has been going on, does anyone honestly think one patch will resolve the issue? Freedom-to-tinker.com’s Ed Felten and J. Alex Halderman certainly don’t think so. Indeed, the “security patches” issued by Sony-BMG and SunnComm present their own set of security issues.

Let’s go back to our initial scenario. Now this ultra crafty and highly intelligent individual who’s hell bent on destruction anticipated this move by SunnComm and Sony-BMG. Knowing a patch would eventually be released, the individual subversively installs a “booby trap” in the MediaMax folder. When an attempt is made to either uninstall or patch the MMX.exe file, the trap is sprung and the world is theirs. In this case, the trap waits until the new Sony-BMG or SunnComm patch is applied.


The threat of a threat is real enough, but how likely is this scenario ?
I think this one is something that is a  major outside horse as the Sony problem took most by storm including the virus scripters, exploiting this removal patch for suncomms system is a leap into pure guesswork, but who knows ... anythings possible  :)

Lysander

  • Guest
Sony Opens Doors To Hackers Again
« Reply #1 on: December 09, 2005, 09:57:29 am »
Why are we concentrating on the security holes Sony's managing to patch? That's just completely ignoring hte bigger issue, namely: TARGETED FREAKING ADS.

WinMX World :: Forum  |  Discussion  |  WinMx World News  |  Sony Opens Doors To Hackers Again
 

gfxgfx
gfx
©2005-2024 WinMXWorld.com. All Rights Reserved.
SMF 2.0.19 | SMF © 2021, Simple Machines | Terms and Policies
Page created in 0.008 seconds with 21 queries.
Helios Multi © Bloc
gfx
Powered by MySQL Powered by PHP Valid XHTML 1.0! Valid CSS!