Log in

I forgot my password

This World
The forum has a new format for working on a revival - new everything if people decide that they want to start a new campaign.

* The Warden Commander is a small dwarf named Nygozy, duster background - may change
* Alistair Theirin is the King and did the ritual with Morrigan to save Nygozy.
* The Cousland background is taken by Macha.* - don't know yet
* The elf background is taken by Calliara.

Latest topics
» CALLING - Anyone Left?
Tue Feb 10, 2015 11:26 am by Damien Zeehem

» Super Quick Sketch of Badassery
Wed Aug 27, 2014 12:04 pm by Calliara

» WHO CAN STILL PLAY?
Mon Aug 04, 2014 3:10 pm by Calliara

» Damien - the unoriginal soundtrack
Mon Nov 04, 2013 12:51 pm by Damien Zeehem

» The dawn of new days
Tue Oct 08, 2013 3:50 pm by Damien Zeehem

» Dwelling of Tears - A Double Entendre
Wed Sep 18, 2013 10:48 pm by Macha

» So - Dragon Age 3
Sat Jun 22, 2013 11:54 am by Ianto

» MSN Failure (and Graduating!)
Wed May 29, 2013 10:41 pm by Final Warrior

» Happy birthday Dragonis !
Tue May 14, 2013 11:25 pm by Dragonis


Ubisoft games contain an exploitable browser plugin.

View previous topic View next topic Go down

Ubisoft games contain an exploitable browser plugin.

Post  Final Warrior on Mon Jul 30, 2012 8:23 am

Just saw something related to this floated on my G+ news feed, and while I realize DA is a BioWare game, thought I might as well as relay the news here, in case anyone here plays Ubisoft games on PC.

tl;dr: If you've installed a recent Ubisoft game that requires the use of UPlay, you'll want to go into your browser(s)'s plugins and disable the associated UPlay PC plugin.

The original article has a pastehtml link that can show you how horrendously exploitable UPlay is, on a Windows machine. (You open the web link and, if you have UPlay installed, it will open up Calculator - which is a user-side executable program, not something inside of a browser. Replace "Calculator" with "any executable" like, say, a keylogger? And you can probably see how this could be extremely dangerous.)

From Rock Paper Shotgun:

We’re currently investigating the full extent of this, but moralising and recrimination can come later. For now, the important thing is to warn folks who have certain Ubisoft games installed on their PCs that an apparent backdoor has been discovered in the Uplay infrastructure/DRM which may in theory allow any anyone so minded to install God knows what horrors on your PC. It isn’t confirmed as definite, but certainly proof of concept code is calling up Uplay windows and then loading other programs from websites that have nothing to do with Ubisoft. If Uplay is on your PC, I urge you to uninstall it and any games that use it immediately, until we know more. Update: the flaw lies specifically in a browser plugin Uplay quietly installs, and the general consensus is now that’s all you need to remove to protect yourself. See below for details on how to rid your PC of it.

Essentially, as described here, with the right piece of code any website can call up a Uplay window and from that might be able to slip a program install or launch of their choice onto your PC. Were someone with malevolent intent to inject the code onto a commonly-visited website, they might be able to gain control over any number of PCs – or install keyloggers, viruses and the like, or just plain old wipe your hard drive. The web security expert we chatted to says this could even occur via an email link, making this exploit a phisher’s dream if it’s as a bad as it sounds.

Says the expert we spoke to, “you could click on a weblink, thinking you were visiting the BBC News Website from a friendly list of bookmarks. Except it’d also install a program via UBISoft’s DRM plugin which wiped your hard drive. It is a genuine threat. All it would take is an exploited wordpress, say.”

But I come here not to sensationalise, but to warn. With news of this backdoor spreading like wildfire and proof of concept code already out there, there’s a very real chance that someone will try to achieve something unpleasant with it before Ubisoft can shut it down. That’s presuming it is what it appears to be, of course – this may turn out to be an exaggeration, especially as the internet does so love to mock Ubi’s notorious DRM, but so far the evidence very much points to this being as dangerous as it sounds. I’ve contacted Ubisoft for comment and will update as and when we know more. There’s been no response as yet, and other sites are reporting similar silence.

The fault does appear to specifically lie with a browser plugin Uplay installs rather than Uplay itself, so remove that from your Firefox/Chrome/IE/etc extensions as a priority, but I’m erring on the side of extreme caution and advocating the removal of anything associated with Uplay until this apparent threat is dealt with. Here’s how to locate and disable the errant plugin:


Firefox:
Tools – Add-ons – Plugins – Disable the Uplay and Uplay PC Hub plugins

Chrome:
Visit about:plugins and disable

Opera:
Settings – Preferences – Advanced – Downloads – Search “Uplay”, delete

(Via Revisor on our forums).

Contrary to what some parts of the web are currently screaming, this is not a rookit – it’s an exploit in a browser extension. Alas, the vast majority of folk with said browser extension will have been hitherto unaware that Uplay had installed it.

You can find the games which apparently include the exploit listed below. If you have any of them on PC, I would urge you to uninstall them and any Uplay applications as soon possible as a precautionary measure. If you have any of these games on your PC, you can also see the apparent exploit harmlessly in action with the link here.

We’ve tested with a PC that has never had Uplay installed on it. The exploit didn’t work at all. After installing Uplay alone, immediately the test link did indeed work, calling up the Uplay window, and then with that, booting the Windows Calculator. After uninstalling Uplay, the exploit once again didn’t work.

Calculator’s hardly scary of course, but if someone could use the exploit to slip another program onto your PC or run command lines, anything could happen. Frightening – even if there is still something of a question mark over exactly what level of access a nasty soul could go on to achieve. Additionally, this software would appear to allow Ubisoft to monitor PCs running Uplay, but again let’s wait for more details before any hammers of judgement are wielded.

It appears versions of some of these games are Uplay-free and thus in theory safe, but again it may be better to be paranoid than sorry. You can always reinstall later, right? I’d also urge you to check your list of installed programs in Windows, just in case an old install of the Uplay launcher/plugin is hanging around despite your having previously uninstalled any games that used it.

Here’s the list of titles known to be affected:

Assassin’s Creed II
Assassin’s Creed: Brotherhood
Assassin’s Creed: Project Legacy
Assassin’s Creed Revelations
Assassin’s Creed III
Beowulf: The Game
Brothers in Arms: Furious 4
Call of Juarez: The Cartel
Driver: San Francisco
Heroes of Might and Magic VI
Just Dance 3
Prince of Persia: The Forgotten Sands
Pure Football
R.U.S.E.
Shaun White Skateboarding
Silent Hunter 5: Battle of the Atlantic
The Settlers 7: Paths to a Kingdom
Tom Clancy’s H.A.W.X. 2
Tom Clancy’s Ghost Recon: Future Soldier
Tom Clancy’s Splinter Cell: Conviction
Your Shape: Fitness Evolved

I’m not at all certain that list is complete, given other games are known to use Uplay – From Dust, for instance. Check your program installs and browser extensions/plugins for any trace of it regardless – it might be there from an older install even though the game that carried it is no longer on your PC.

Again, more news as we have it.

Maybe uninstall UPlay/Ubisoft games in general, although that's probably just my inherent bias against Ubisoft and their DRM talking.

-- Griffinhart

_________________


"My word is my honor. My honor is my life."
-- Demonchild, Angelkin, the Blackest Seraph, the Final Warrior

"I'm a traitor, will you trust me? I'm dead, will you return me to life? I'm hated, will you love me? I've lost my innocence, will you help me find it?
...Save your breath, there are some things you can't get back."
-- The ghost of Lady Aribeth de Tylmarande, Neverwinter Nights: Hordes of the Underdark

"Was au ga chs mea eterne manaf."
avatar
Final Warrior

Posts : 588
Join date : 2010-08-29
Location : Hardly Her(e|oic).

View user profile http://www.innocentmachine.com

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Nygozy on Thu Aug 09, 2012 7:52 pm

Thanks for informing everyone, Final. Now I just have to figure out if I have anything from them ... but I know I don't have anything on my machines from them. *nibbles on bottom lip thinking or trying to*

_________________


Nygozy's Bio
avatar
Nygozy
Admin

Posts : 1064
Join date : 2010-05-20
Age : 50

View user profile

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Final Warrior on Fri Aug 10, 2012 8:29 am

Ubisoft has since plugged the hole, though "how well" is a different question.

-- Griffinhart

_________________


"My word is my honor. My honor is my life."
-- Demonchild, Angelkin, the Blackest Seraph, the Final Warrior

"I'm a traitor, will you trust me? I'm dead, will you return me to life? I'm hated, will you love me? I've lost my innocence, will you help me find it?
...Save your breath, there are some things you can't get back."
-- The ghost of Lady Aribeth de Tylmarande, Neverwinter Nights: Hordes of the Underdark

"Was au ga chs mea eterne manaf."
avatar
Final Warrior

Posts : 588
Join date : 2010-08-29
Location : Hardly Her(e|oic).

View user profile http://www.innocentmachine.com

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Nygozy on Fri Aug 10, 2012 5:07 pm

That's good so I sorta don't have to be concerned if I have something of theirs. Good news.

Hey ... you do know that dancing girl is mesmerizing?

_________________


Nygozy's Bio
avatar
Nygozy
Admin

Posts : 1064
Join date : 2010-05-20
Age : 50

View user profile

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Final Warrior on Fri Aug 10, 2012 7:18 pm

Yeah, dancing lolis tend to be.



-- Griffinhart

_________________


"My word is my honor. My honor is my life."
-- Demonchild, Angelkin, the Blackest Seraph, the Final Warrior

"I'm a traitor, will you trust me? I'm dead, will you return me to life? I'm hated, will you love me? I've lost my innocence, will you help me find it?
...Save your breath, there are some things you can't get back."
-- The ghost of Lady Aribeth de Tylmarande, Neverwinter Nights: Hordes of the Underdark

"Was au ga chs mea eterne manaf."
avatar
Final Warrior

Posts : 588
Join date : 2010-08-29
Location : Hardly Her(e|oic).

View user profile http://www.innocentmachine.com

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Nygozy on Fri Aug 10, 2012 9:34 pm

Without the singing she is fine. With the singing I want an axe between her eyes.

_________________


Nygozy's Bio
avatar
Nygozy
Admin

Posts : 1064
Join date : 2010-05-20
Age : 50

View user profile

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Final Warrior on Fri Aug 10, 2012 9:37 pm

This thread demands more Ami.



-- Griffinhart

_________________


"My word is my honor. My honor is my life."
-- Demonchild, Angelkin, the Blackest Seraph, the Final Warrior

"I'm a traitor, will you trust me? I'm dead, will you return me to life? I'm hated, will you love me? I've lost my innocence, will you help me find it?
...Save your breath, there are some things you can't get back."
-- The ghost of Lady Aribeth de Tylmarande, Neverwinter Nights: Hordes of the Underdark

"Was au ga chs mea eterne manaf."
avatar
Final Warrior

Posts : 588
Join date : 2010-08-29
Location : Hardly Her(e|oic).

View user profile http://www.innocentmachine.com

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Nygozy on Fri Aug 10, 2012 9:49 pm

At least in that one it didn't make me want to kill her.

_________________


Nygozy's Bio
avatar
Nygozy
Admin

Posts : 1064
Join date : 2010-05-20
Age : 50

View user profile

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Final Warrior on Fri Aug 10, 2012 10:10 pm

Ami, Mami, and Shana Louise Taiga Nagi Iori.



-- Griffinhart

_________________


"My word is my honor. My honor is my life."
-- Demonchild, Angelkin, the Blackest Seraph, the Final Warrior

"I'm a traitor, will you trust me? I'm dead, will you return me to life? I'm hated, will you love me? I've lost my innocence, will you help me find it?
...Save your breath, there are some things you can't get back."
-- The ghost of Lady Aribeth de Tylmarande, Neverwinter Nights: Hordes of the Underdark

"Was au ga chs mea eterne manaf."
avatar
Final Warrior

Posts : 588
Join date : 2010-08-29
Location : Hardly Her(e|oic).

View user profile http://www.innocentmachine.com

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Nygozy on Sat Aug 11, 2012 3:34 pm

Are these cut scenes from a video game or something else? It reminds me of the Aiko Yukiro figures from Daz 3d.

_________________


Nygozy's Bio
avatar
Nygozy
Admin

Posts : 1064
Join date : 2010-05-20
Age : 50

View user profile

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Final Warrior on Tue Aug 14, 2012 3:45 am

They're not cutscenes, just the song sequences from the IDOLM@STER X360 game.

Incidentally, this thread is now dancing.



-- Griffinhart

_________________


"My word is my honor. My honor is my life."
-- Demonchild, Angelkin, the Blackest Seraph, the Final Warrior

"I'm a traitor, will you trust me? I'm dead, will you return me to life? I'm hated, will you love me? I've lost my innocence, will you help me find it?
...Save your breath, there are some things you can't get back."
-- The ghost of Lady Aribeth de Tylmarande, Neverwinter Nights: Hordes of the Underdark

"Was au ga chs mea eterne manaf."
avatar
Final Warrior

Posts : 588
Join date : 2010-08-29
Location : Hardly Her(e|oic).

View user profile http://www.innocentmachine.com

Back to top Go down

Re: Ubisoft games contain an exploitable browser plugin.

Post  Sponsored content


Sponsored content


Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum