On CNET: 500GB external hard drive for $79
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack

By John Borland, News.com
Posted on ZDNet News: Nov 19, 2005 1:25:00 AM

Computer researchers uncovered a new security risk Friday related to Sony BMG Music Entertainment copy-protected CDs, which could expose several hundred computers to attack.

This security flaw dealt with different technology than that which has sparked controversy for nearly three weeks, however.

Recent criticism has focused on Sony's release of discs containing copy-protection software created by British company First 4 Internet, which opened listener's computers to hackers' attack. The latest risk is from an uninstaller program distributed by SunnComm Technologies, a company that provides copy protection on other Sony BMG releases.

Sony said in a statement Friday that SunnComm had removed the uninstall program from the Web, and was in the process of contacting 223 consumers who had downloaded it while it was available.

The security hole in the uninstall program was similar to one discovered with First 4 Internet's uninstall program several days ago.

In each case, Princeton University computer science professor Edward Felten and researcher Alex Halderman found that the uninstall programs responded to commands from their creators' Web sites, but would also respond to malicious instructions from other Web sites.

In its statement, Sony said that SunnComm was developing a new uninstall program for its copy-protection software, and that Felten had agreed to review it before it was posted online.

The SunnComm security risk discovered by Felten and Halderman is limited to the uninstall program, which was distributed separately from the CDs themselves.

  • Talkback
  • Most Recent of 39 Talkback(s)
Then I'll ask for a clarification
Clearly I did misunderstand you. What then, did you mean,
when you said:
"just download from other sources then...
Legally purchase the music you want in any format... Then
download ful... (Read the rest)
Posted by: tic swayback Posted on: 11/22/05 You are currently: Logged In | Log out
Re:Removing Sonys Rootkit Andromedat6   | 11/18/05
ghost? tip? Jack-Booted EULA   | 11/19/05
One would think.... tic swayback   | 11/21/05
What they've learned tic swayback   | 11/21/05
This is SOOOO retarded rick752   | 11/18/05
Even stupider tic swayback   | 11/21/05
Amen maddog@...   | 11/21/05
Its not that they're so smart, DemonX   | 11/21/05
Even Worse Edward Meyers   | 11/18/05
Corporate arrogance in action stardeb55   | 11/19/05
ipod arrogance in action yyuko@...   | 11/19/05
Response to iPod arrogance stardeb55   | 11/19/05
just download from other sources then... cjules13   | 11/21/05
That's terrible advice tic swayback   | 11/21/05
I know it's grey... cjules13   | 11/21/05
You implied that in your previous post tic swayback   | 11/21/05
because I'm not a theif... cjules13   | 11/21/05
Then you're probably breaking the law tic swayback   | 11/21/05
I'll tell them anything I want! cjules13   | 11/21/05
Will you visit them in jail? tic swayback   | 11/21/05
what part of you doesn't understand... cjules13   | 11/22/05
Ahem tic swayback   | 11/22/05
imply this... cjules13   | 11/22/05
Then I'll ask for a clarification tic swayback   | 11/22/05
Not true!!! techboy_z   | 11/21/05
Worse than that tic swayback   | 11/21/05
And IT Scion   | 11/21/05
Why should they? tic swayback   | 11/22/05
Yea IT Scion   | 11/21/05
Not Only Sony, EMI Import CD's from Europe too!!! sierrarancher   | 11/19/05
Just in time for shopping season SQLServer   | 11/19/05
Shopping habits to change raelalt   | 11/21/05
Sony, . . . are you trying to get profit loss Boot_Agnostic   | 11/20/05
This is Relevant Edward Meyers   | 11/20/05
Hopefully a house divided Boot_Agnostic   | 11/21/05
The mouse killing the elephant tic swayback   | 11/21/05
The Sony Hits just keep a coming! BitTwiddler   | 11/21/05
Texas Sues Sony Over Alleged CD Spyware RobertoSalazar   | 11/21/05
Trust Andromedat6   | 11/21/05

What do you think?

advertisement
advertisement

Whitepapers & Webcasts