Friday, January 14, 2005
Windows Media DRM Could Allow a Trojan to be Installed on Your Computer
Posted by James Fee in "NEWS" @ 05:10 PM
"Today, several news sites reported that Microsoft had denied reports of a security vulnerability in its Windows Media digital rights management software. I would encourage Microsoft executives not to slip into denial over the denial. The supposed exploit, which Panda software has identified, works something like this: A user tries to play what appears to be a Windows Media Video file, presumably lifted from a peer-to-peer site. The file requests to issue a valid license, but instead installs one of two Trojans on the computer. The license-issue request is consistent with what the user would expect from playing a protected video file. "This function is not a security vulnerability in Windows Media Player or DRM," said a Microsoft statement issued to CNET News.com."
It appears on the surface, most of us won't have to worry about a bogus license, but these days you never know and hopefully Microsoft will figure out a way to stop this exploit before it becomes and issue. For the time being keep an eye on where you download your DRM licenses from.
It appears on the surface, most of us won't have to worry about a bogus license, but these days you never know and hopefully Microsoft will figure out a way to stop this exploit before it becomes and issue. For the time being keep an eye on where you download your DRM licenses from.
