[Infowarrior] - MS DRM scheme vulnerabilities

Richard Forno rforno at infowarrior.org
Sat Sep 25 08:28:44 CDT 2010


Microsoft's DRM makes your computer vulnerable to attack
http://www.boingboing.net/2010/09/24/microsofts-drm-makes.html

The msnetobj.dll library is an ActiveX control used by Microsoft's DRM; it is intended to prevent the owner of a computer from saving or viewing certain files except under limited circumstances, and to prevent the computer's owner from disabling it or interfering with it.

As if that wasn't bad enough, it is also vulnerable to three separate attacks -- buffer overflow, integer overflow and denial of service -- any of which can compromise your computer's working, leaving your data vulnerable to crooks and vandals. 

Proof of Concept @ http://www.exploit-db.com/exploits/15061/


More information about the Infowarrior mailing list