Crackers Tune In to Windows Media Player 367
jamshedji writes "Crackers are using the newest DRM technology in Microsoft's Windows Media Player to install spyware, adware, dialers and computer viruses on unsuspecting PC users."
For God's sake, stop researching for a while and begin to think!
Solution (Score:3, Informative)
Re:It's a bit like IE and activeX except.. (Score:4, Informative)
When the user clicks yes, then their system becomes infected.
So if you don't trust the video source, or set WMP to not download codec you will be safe
Re:It's a bit like IE and activeX except.. (Score:5, Informative)
Re:Unsuspecting??? (Score:3, Informative)
Well, to be precise it opens which ever media player is associated with the media file you are trying to open. You can also override this on a per-filetype basis by specifiying a different handler for the file under the "Downloads" section of the Options box - the section titled "File Types". Whether your motivation for switching to Firefox was security, features, web standards or because it's FOSS, then the same motivation should apply to WMP too. Certainly on my Windows boxes none of the primary media types are associated with the DRM and security hole infested WMP.
Re:No logic (Score:5, Informative)
In theory, if you download an MP3 with DRM enabled, Windows Media Player will search your computer for the license. If it doesn't find it, it will go to the URL specified in the MP3. This is part of the DRM spec.
"Hackers" are just taking advantage of this, creating fake MP3s/MOVs and making those URLs go to junk-infested sites.
In WMP's defense, it *does* ask you first if you want to go out and hit the site for the DRM license. And once you get there, if you're running SP2 then security is no different than any other mailious website you may visit.
SP2 should block the popups, and give you a much more informative warning if the site tries to push software onto your computer.
Better replacement for WMP (Score:5, Informative)
Windows media player like it should be. Low resource usage, plays dvds and any file you have the codecs for installed, without any network access at all. (Unless you're playing a stream or course)
Re:Unsuspecting??? (Score:3, Informative)
Seriously I haven't felt the need to install any AV player after MP Classic and mega codec pack from kazza-lite. Also use real player alternative and quicktime alternative much less resouce use and no phoning back to home.
Re:It's a bit like IE and activeX except.. (Score:4, Informative)
Re:It's a bit like IE and activeX except.. (Score:3, Informative)
Nothing to do with codecs. From TFA:
Am I missing something? (Score:3, Informative)
So.. isn't this just a new way to get people to visit spyware websites.. which exploit flaws in IE? Meaning, there is no new flaw in WMP here?
As long as WMP uses your default browser to check for licenses (can someone confirm this?) I'm safe
Re:Unsuspecting??? (Score:2, Informative)
Re:This is why I use Linux.. (Score:2, Informative)
From printers to scanners and CDRom burning tools, there are loads of MS-related stuff that has never been tested -and which does _not_ work- on a properly configured Windows box.
The solution? An improperly configurend Windows box, with full rights for the malware...
Re:No logic (Score:3, Informative)
The only thing downloadable should be a valid DRM license. A simple data file basically. Why is it even possible to let it download executables?
Re:I know this is a very pro linux forum but (Score:3, Informative)
Also Why does WMP default open IE eve if your default web browser is something else?
MSFT programs that were designed wrong to begin with
IE, WMP, Outlook, Active X, Windows Scripting, MS word macros, MS excel Macros(yes they are close).
The fact is MSFT has designed lot's of software and duplicated functionality first, then thought about if what they were doing could cause a probelm.
No OS or software is perfect, but MSFT puts stupid obvious holes in their software and dismisses those who complain. there is no reason why Active x should be designed to take advantge of the entire system. How about Macro's? IE, WMP, Outlook are basically ONE program. That is how tightly they are tied together. Is there a reason why?
Re:Trusted Computing Will Make It Worse (Score:3, Informative)
Re:Unsuspecting??? (Score:3, Informative)
Someone need to explain this (Score:3, Informative)
This is not a security breach in Windows Media Player.
Here is what happens. A wma/wmv DRM protected file needs a license to be played. When WMP plays a file that does not have a license it will open a dialog with a web browser control inside and navigate to the "license store url" that was written inside the file. This feature is called "superdistribution" and it is present in other DRM enabled players as well.
That is all that Windows Media Player does. At most WMP can be acused of not displaying more information about why the dialog was opened. If even the slashdot crowd has problems understanding this, imagine the rest of the computer users.
Once the IE opens the web page it is no different than going to that url yourself in IE.