Virus.Org IT Security News and Information Portal. We offer the latest IT security news, updates, product reviews, books, and articles for all you IT security professionals out there. Enter and get the best IT security information on the Internet.

 
. Welcome to Virus.Org !  May 12th 2008 - 04:50:55 AM
.
.
.

Main Menu

Home
News Archive
FAQs
Articles
Password Database
Malware Scanner
Mailing List Archive
Virus.Org Designs
Password Generator
Web Links
Search

Search

Mailing List Search

Advertisement

Login Form






Lost Password?
No account yet? Register

Who's Online

We have 1 guest online

Syndicate

Get Firefox

.
Another Copy Protection System Lets the Hackers In PDF Print E-mail
Written by Editor   
Tuesday, 06 November 2007

Just like the little Sony DRM rootkit problem from 2005 that could be used for no good, it seems a component of Macrovision copy protection included within Windows XP and Windows 2003 can be used to elevate privileges and compromise systems. 

The flaw, which occurs in the ‘secdrv.sys’ driver, could allow malicious code to elevate its privileges on the targeted machine. The flaw it seems has been used in a limited number of attacks and Microsoft are monitoring the situation. All is not lost however, Macrovision have released a patch which you can find here and Microsoft are planning to push out a fix as part of Windows Update.

The flaw allows local users to overwrite arbitrary memory locations and gain privileges via a crafted argument to a METHOD_NEITHER IOCTL. You can find out more about the issue from CVE-2007-5587.
 
Tag it:
Delicious
Furl it!
Spurl
Digg
Reddit
YahooMyWeb
Technorati
Stumble
 .

Donate to Virus.Org

Polls

Will OS X be the next big hacker target?
 
.

Copyright © Virus.Org 1997-2008
All Trademarks Acknowledged.
Please view our Terms and Conditions and our Privacy Policy.
You can syndicate our news using the file backend.php
Listed on BlogShares
Technorati