In association with heise online

06 November 2007, 13:59

Microsoft confirms flaws in Macrovision driver

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Microsoft has published a security advisory concerning Macrovision's vulnerable sec.drv.sys driver included in Windows XP and Server 2003. The advisory confirms that it is possible for registered users to escalate their restricted privileges. To do so, they need only run the driver with manipulated parameters in order to write arbitrary code into memory and launch it with system rights. The flaw does not affect Vista.

Microsoft has also confirmed that the vulnerability is already being actively exploited on server systems, though the firm says the number of attacks is still low. The driver is part of Macrovision's SafeDisc copy protection solution. Macrovision has already released a patch for the driver to remedy the problem. According to its security advisory, Microsoft will be distributing the patch via the Automatic Update function as part of an upcoming Patch Tuesday.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit