Jump to content

Potential Ubisoft UPlay exploit issue

Sign in to follow this  

Recommended Posts

I feel it's worth posting this here in case it affects anyone on this forum: http://www.rockpapershotgun.com/2012/07/30/psa-possible-security-risk-in-some-ubisoft-pc-games/

 

Basically it seems some sort of exploit Ubisoft's DRM utility Uplay. Looks like it's actually in a browser plugin it silently installs with the utility, but the article recommends removing Uplay entirely until things have been cleared up.

 

EDIT: The article's been updated saying that you only need to remove the browser plugin as that is the thing at fault, apparently.

Feel free to PM me about almost anything and I'll do my best to answer. :)

 

"Beware of what you ask for, for it may come to pass..."

Share this post


Link to post

I would uninstall it anyways, and not give Ubisoft any more support. That's unnecessary bullshit on their part.

R.I.P Stephen "Anti-Social Fatman" Bray

 

"In the meantime, the sun will be rising. You will know all, and I will not feel this dread any longer."

Share this post


Link to post

This news just made me realize that I don't own any ubisoft games for the PC, and actually only own the Prince of Persia PS2 games. It's a shame this exploit was possible in the first place, however at least Ubisoft fixed it rather quickly. Other companies would take longer if they tried fixing a similar issue, assuming they'd bother trying in the first place.

Share this post


Link to post
This news just made me realize that I don't own any ubisoft games for the PC, and actually only own the Prince of Persia PS2 games. It's a shame this exploit was possible in the first place, however at least Ubisoft fixed it rather quickly. Other companies would take longer if they tried fixing a similar issue, assuming they'd bother trying in the first place.

EA would probably enforce it if they did something like it.

R.I.P Stephen "Anti-Social Fatman" Bray

 

"In the meantime, the sun will be rising. You will know all, and I will not feel this dread any longer."

Share this post


Link to post
however at least Ubisoft fixed it rather quickly. Other companies would take longer if they tried fixing a similar issue, assuming they'd bother trying in the first place.

 

The only reason Ubisoft fixed it so promptly was because the vulnerability was made public. Had it been reported to them privately it would probably have taken Ubi's programmers weeks or even months to get around to fixing it. For the sake of publicity they had to act right away since all the major game sites had already reported on this.

 

Supposedly the vulnerability was limited to a Uplay browser plugin which Uplay secretly installs into people's browsers without their knowledge or consent. That sort of secrecy is a pretty prominent theme of spyware malware digital rights management.

Share this post


Link to post
however at least Ubisoft fixed it rather quickly. Other companies would take longer if they tried fixing a similar issue, assuming they'd bother trying in the first place.

 

The only reason Ubisoft fixed it so promptly was because the vulnerability was made public. Had it been reported to them privately it would probably have taken Ubi's programmers weeks or even months to get around to fixing it. For the sake of publicity they had to act right away since all the major game sites had already reported on this.

 

Supposedly the vulnerability was limited to a Uplay browser plugin which Uplay secretly installs into people's browsers without their knowledge or consent. That sort of secrecy is a pretty prominent theme of spyware malware digital rights management.

 

 

See: securom (which, if I recall, is another marvelous Sony creation).

 

And don't get me wrong, my comment wasn't praising ubisoft in the least (the beginning of my statement you quoted mentioned that this exploit shouldn't have been an issue in the first place). I agree that a leading reason the issue got fixed so quickly was because it was publicized. To take an example from Sony again, the PSN outage lasted much longer than the time between this exploit was discovered to the time it was supposedly remedied.

Share this post


Link to post

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in the community.

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  


  • Who's Online   0 Members, 0 Anonymous, 430 Guests (See full list)

    • There are no registered users currently online
×
×
  • Create New...

This website uses cookies, as do most websites since the 90s. By using this site, you consent to cookies. We have to say this or we get in trouble. Learn more.