Ubisoft Uplay security flaw discovered, update your software now

Uplay Logo

By on July 31, 2012 at 12:02 pm

Ubisoft’s Uplay doesn’t exactly have a good rep with PC gamers already due to its tendency to go down at key times and leave gamers unable to play their games – but it’s about to get even worse. Late last night it was revealed that Ubisoft’s Uplay software came unwittingly packaged with a gaping backdoor: a browser plugin that Uplay installs into your computer during setup.

This browser plugin could theoretically be used to execute nearly any program through Uplay – indeed, adventurous users on the Ubisoft forums themselves quickly discovered they could quickly write scripts that used Uplay to launch Windows Calculator and other programs – and as such we’re being warned to update our Uplay software immediately.

Ubisoft jumped on the news quickly and have issued the following statement: “We have made a forced patch to correct the flaw in the browser plug-in for the Uplay PC application that was brought to our attention earlier today. We recommend that all Uplay users update their Uplay PC application without a Web browser open. This will allow the plug-in to update correctly. An updated version of the Uplay PC installer with the patch also is available from Uplay.com.” Many users are uninstalling completely until the problem can be verified as fixed, which might be a reasonable precaution.

Source: Rock, Paper, Shotgun

Tags: ,
14 comments (Leave your own)

Bonus points for not calling it a rootkit.

 

I wonder if Ubisoft does these sorts of things on purpose to see how much they can get away with.

 

I wish always on DRM would just die. Publishers and developers should be offering incentives for consumers to buy their games legitimately, rather than investing a heck of a lot of time in money in DRM that will just be cracked.

Then, when everything goes down as it frequently does, honest customers are the only ones who suffer.

Such a bad model. Everyone should take a leaf out of CD Projekt Red’s book.

 

Those bastards!

 

texelate:
Such a bad model. Everyone should take a leaf out of CD Projekt Red’s book.

And send extortion letters to accused pirates?

Yep; take all the leaves…

 

I wasn’t even aware ubisoft’s mandatory uplay thing installed browser plug-ins… Why oh why do these inert conglomerates insist on neutralising the few advantages they have over pirated copies of their games? As it stands there seems to be just as much risk associated with these mandatory DRM systems as there is with pirating a game and getting a dodgy torrent.

 

jez:
I wasn’t even aware ubisoft’s mandatory uplay thing installed browser plug-ins…

Yeh, I don’t remember seeing any kind of notification about that either. Bastards.

 

pinothyj: And send extortion letters to accused pirates?

Yep; take all the leaves…

What?

 

oh lol…. this guy says it best, and I quote:

“So you are telling me that…

Uplay is a ****ing crappy DRM to prevent pircay?
Yet every Ubisoft game is out there already pirated?
And ME who actually BOUGHT the games, get a crappy DRM.
And ME who actually BOUGHT the game get the risk of being hacked?

hahaha F U C K —- Y O U

U-B-I-S-H-I-T “

 

At least Firefox is on the ball fired up PC after work 1st thing i see is plugin Uplay needs updating ……… WHAT when did i install this shitter wasnt on the install program list sleezy hey UBI

 

neodewolf:
oh lol…. this guy says it best, and I quote:

“So you are telling me that…

Uplay is a ****ing crappy DRM to prevent pircay?
Yet every Ubisoft game is out there already pirated?
And ME who actually BOUGHT the games, get a crappy DRM.
And ME who actually BOUGHT the game get the risk of being hacked?

hahaha F U C K —- Y O U

U-B-I-S-H-I-T ”

Yea mate i hear you steam sales i bought some games i “tryed” cause they were quite good and get slugged with this, man other side of the fence is so less risky, WOW i said that.
So i went back to my “tried” versions since its LESS work boot steam, to boot uplay, to boot game argh man UBI is sooo deluded ohh and i get to play when they can not.
But i do feel less guilty now after paying them win i suppose

 

It has gotten pretty stupid when people buy then game then download a pirated version because it is just easier to use.

 

You have to remember, according to Ubi, 90% of PC gamers are pirates anyway.

Of course their “statistics” don’t really take into account Ubi’s;

1) increasing lack of interesting games
2) increasing lack of support for those games
and now
3) a system that actually puts a legal purchase at greater risk than a stolen item.

These guys don’t know what they are doing to what is left of their reputation.

 

<—Is proud he has none of this Ubi-malware on his computer. ^_^ Though this is going to become mighty awkward when Watch Dogs and Beyond Good and Evil 2 come out. D:

 
Leave a comment

You can use the following bbCode
[i], [b], [img], [quote], [url href="http://www.google.com/"]Google[/url]

Leave a Reply

PC Gaming Calendar 2014

Follow Games.on.net

Steam Group

Upcoming Games

Releasing Soon
Thief Shadowrun Returns South Park: The Stick of Truth

Community Soapbox

Recent Features
The Elder Scrolls Online Grabnadz

The Elder Scrolls Online journals: One giant, kinda laggy leap for orc-kind

Levels one through fifteen of The Elder Scrolls Online are demolished by an angry orc mage-tank.

Watch Dogs

Watch Dogs PC hands-on: Not the perfect open world, but still a world of fun

Watch Dogs offers a generous array of options, and we push the boundaries to see how far we can go.

heroes_of_the_storm

Heroes of the Storm: Blizzard’s Dustin Browder on rage problems, hybrid roles, and balance

"We’re trying to make it so if there’s something obvious that you want to do, it’s the right thing to do. There’s no sort of hidden rules or hidden strategies that make that wrong."

ArcheAge

ArcheAge’s alpha impressions: The freeform Korean MMO that might just live up to its promises

This high-flying Korean MMO has finally made it to a Western release. James jumps in to see if the promise 'sandpark' model delivers.

Reaper of Souls

Diablo 3: Reaper of Souls reviewed: Change is a good thing

Blizzard shows that it isn't afraid to change everything

Streaming Radio
Radio Streams are restricted to iiNet group customers.

GreenManGaming MREC

The Regulars
guns_2

Sitrep: Hating Guns and Totally Loving Playing With Guns

Toby's absent-minded shower thoughts arrive for your edification.

The Secret World

Legal Opinion: Bait and switch… with a mankini

Not everybody is laughing following Funcom's April Fools joke on its players.

Bad at Aiming

Sitrep: Waiting in line at the FPS dole queue

Toby is so incompetent that he needs an entire new genre of games invented just to cater for him.

Amazon Fire

Friday Tech Roundup (04 April 2014): Radeon R9 295X2 specs leak

Also, the man behind the "Microsoft" phone scam has been captured and fined.

Facebook Like Box