Posted by Goro on 11/23/05 15:01

Rich wrote:
> More Sony horror:
>
> Sony's rootkit uninstaller is *really* dangerous
> Following on the November 13 research about Sony's rootkit
> "uninstaller" leaving your computer vulnerable to attacks like
> rebooting it by inserting malicious code in a web-page, Princeton
> researchers Ed Felten and Alex Halderman announces that they have
> discovered far more serious problems with the software and warn
> against installing it at all, promising prompt full disclosure (they
> publis this the next day, along with some instructions for defending
> yourself if you've run the uninstaller)
>

This is actually relatively "old" news as even SOny has acknowedged teh
problems with the "uninstaller" (it's actually an ActiveX control) and
has removed it from their website. THey are providing (or getting
ready to provide) a true uninstaller.

btw, the security hole that teh first uninstaller created is far worse
than allowing website to reboot your machine; webpages can run ANY
unsigned code on your computer.

-goro-

• Next in forum: Re: Texas suing Sony now, too
• Prev in forum: Re: Dear Toshiba (and HDDVD)
• Thread view: Re: Texas suing Sony now, too

[Reply to this message]