main

Attackers target Windows DRM flaw

Daniel Fleshbourne   on 07 November 2007 - 11:47 · 14 comments & 7965 views

Advertisement (Why?)
Microsoft has warned that attackers are actively targeting a security vulnerability in the SafeDisc DRM technology that ships as part of Windows. The problem affects the 'secdrv.sys' file, a component of the SafeDisc copy encryption developed by Macrovision and sold to game developers.

The DRM technology is bundled with Windows Server 2003, Windows XP and Windows Vista, but does not affect Windows Vista. Danish security website Secunia rates the vulnerability as 'less critical', the second step on a five step severity scale. The risk to end users is limited because a successful exploit requires attackers to have an account on the targeted system.

View: The full story @ vnunet

Share this Article

About the Author

Full name: Daniel Fleshbourne
User name: Daniel
Contact: via forum PM
Submissions: View All
More: View Bio   New!

Related news

Post a comment · Send to friend Comments · There are 14 additional comments
(2 replies) #1 +Kushan on 07 Nov 2007 - 11:57
Wait, since when has Safedisk been PART OF Windows and not just installed by some crappy game?

Either I've been grossly mistaken for the last 6 or so years or the author of this article doesn't know what the hell they're talking about.
#1.1 Darkness2k on 07 Nov 2007 - 12:10
It's definately installed with Windows, like the article states, it's bundled. It's on our Windows Server 2003 system at work, and I can guarentee no Safedisk related product has been installed there!

Much like the update Microsoft released for Flash, mainly because the old swflash.ocx was bundled with versions of Windows.
#1.2 GP007 on 08 Nov 2007 - 14:45
In order to support SafeDisc games you have to have this thing on your system from the start. If you never install a game that uses SafeDisc tech than the dlls or .sys files etc just sit there and do nothing.

But that aside, this is a bug in SafeDisc and I don't know if MS can be blamed for it directly. They can fix it though.
(2 replies) #2 mrmckeb on 07 Nov 2007 - 12:12
Other sites are reporting this as a Macrovision flaw... not a Windows/Microsoft one...
#2.1 Darkness2k on 07 Nov 2007 - 12:21
I think it's probably something to do with the fact that its installed with Windows, not as a third party application that you install after Windows setup has completed...
#2.2 GP007 on 08 Nov 2007 - 14:47
It technically is a Macrovision flaw. In order to support the SafeDisc tech you have to add these files from the start or any safedisc games will probably never install or run at all.
#3 thenay on 07 Nov 2007 - 12:57
Macrovision protection has always been in XP and newer OSes, search the registry
#4 BrainDedd on 07 Nov 2007 - 13:19
Makes me thankful that it's one of the first things I remove
(1 reply) #5 -Hiroshi- on 07 Nov 2007 - 14:42
A friend of mine actually purchased The Sims 2 Deluxe and Safedisc is actually preventing her from playing it, can't wait to move to a Mac, Windows is driving me damn near insane.
#5.1 GP007 on 08 Nov 2007 - 14:48
Wait, so you're saying the Mac version of that game (does it even have a mac version?), doesn't use copy protection?

I really don't see how that can be the case, even if it's for the Mac.
#6 Croquant on 07 Nov 2007 - 22:41
#7 toadeater on 07 Nov 2007 - 23:10
DRM is bad.
#8 whocares78 on 07 Nov 2007 - 23:49
this article is old, this news was posted days ago, can we not have the same crap posted over and over again.
#9 zbaddog on 08 Nov 2007 - 01:33
Who wants to start a mob at The Grove on Saturday and riot about DRM? I'm in if this is the case because this drives people nuts including me. May the game makers be damned for following DRM and causing similar problems to others like this and what happened to -Hiroshi-

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.

Advertisement (Why?)
News powered by Neowin Management System (Build - 5.0.1020) © 2000 - 2008 Neowin.net