Sony: First they installed XCP, now they can't uninstall it

TruckStuff · 11-17-2005, 06:41 AM

Security issues found in Sony's XCP uninstaller:

http://secunia.com/advisories/17610/

Quote:

Sony CD First4Internet XCP Uninstallation ActiveX Control Vulnerability

Secunia Advisory: SA17610 Print Advisory
Release Date: 2005-11-16

Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Unpatched

Software: First4Internet XCP Content Management

Select a product and view a complete list of all Patched/Unpatched Secunia advisories affecting it.

Description:
A vulnerability has been reported in First4Internet XCP's uninstallation ActiveX control, which potentially can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to the "CodeSupport.ocx" ActiveX control that is installed via Internet Explorer when the user un-installs the XCP DRM software by visiting the vendor's website. The ActiveX control is marked safe-for-scripting and supports several potentially dangerous methods like "RebootMachine", "InstallUpdate", and "IsAdministrator". This may be exploited to install arbitrary code on the user's system.

Successful exploitation requires that the user visits a malicious website.

The vulnerability is related to:
SA17408

Solution:
Remove the ActiveX control from the system if it is installed.

Provided and/or discovered by:
Muzzy, J. Alex Halderman, and Ed Felten.

Original Advisory:
http://www.freedom-to-tinker.com/?p=927
http://hack.fi/~muzzy/sony-drm/

Other References:
SA17408:
http://secunia.com/advisories/17408/

mcs328 · 11-17-2005, 08:40 AM

http://www.gotapex.com/forums/showthread.php?t=93369 (Got|Rootkit?)

The cure is worse than the poison it seems.

Jcranmer · 11-17-2005, 09:00 AM

Oh that's just great. Tell me again why people should by CDs instead of just downloading mp3s?

zero2dash · 11-17-2005, 02:09 PM

Quote:

Originally Posted by Jcranmer

Oh that's just great. Tell me again why people should by CDs instead of just downloading mp3s?

gear02 · 11-17-2005, 02:23 PM

please oh please let Sony burn to the ground because of this. Let it be a lesson to those damned DRM purveyors who think consumers will bend backwards for their IP.

11-17-2005, 08:40 AM	#2
mcs328 Admiral Join Date: Feb 2001 Location: Maryland Posts: 6,578	http://www.gotapex.com/forums/showthread.php?t=93369 (Got\|Rootkit?) The cure is worse than the poison it seems. __________________

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

11-17-2005, 09:00 AM	#3
Jcranmer Commander Join Date: Jan 2001 Location: Pekin, IN Posts: 1,377	Oh that's just great. Tell me again why people should by CDs instead of just downloading mp3s?

11-17-2005, 02:23 PM	#5
gear02 Admiral Join Date: Apr 2000 Location: Seattle, WA Posts: 7,223	please oh please let Sony burn to the ground because of this. Let it be a lesson to those damned DRM purveyors who think consumers will bend backwards for their IP.

User Name
Password
Remember Me?