Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
    Digg this story   Add to del.icio.us  
Sony BMG: The security remix
Published: 2005-11-18

Consumers and companies continued to take steps to reign in potential security issues caused by the flawed and overreaching copy-protection code included on some music CDs released by Sony BMG.

On Thursday, Microsoft told network administrators in a blog entry how to disable the Active X control used by Sony BMG to remove the copy protection from PCs. Earlier in the week, two Princeton University computer scientists discovered that the Active X control opened a potential hole in the security of Windows computers.

Meanwhile, several programmers have allegedly found evidence that First 4 Internet, the creator of the problematic copy protection scheme used by Sony BMG, may have used open-source software for some of their software functionality. Among the open-source software thought to have been infringedis the code for the MP3 encoder LAME, which in true recursive form stands for Lame Ain't an MP3 Encoder.

At least one retailer has started an e-mail campaign to inform customers of the Sony recall. Online retail giant Amazon.com has sent e-mail notifications to buyers of the 52 Sony BMG CD titles known to have the First 4 Internet software included on the disc. Sony BMG has started a Web site to allow customers to send back the CDs and replace the discs with new CDs without the copy protection.



Posted by: Robert Lemos
    Digg this story   Add to del.icio.us  
 
Comments Mode:
Sony BMG: The security remix 2005-11-20
Mr Trivia
Sony BMG: The security remix 2006-02-19
Anonymous







 

Privacy Statement
Copyright 2009, SecurityFocus