I just read this from a site in Portuguese. Hot news:
After a few days, Sony released an application that may uninstall their pirated anti-piracy software from Windows.
You see, I found it pretty strange that they would release an uninstaller AFTER Microsoft made a tool that works 100% perfectly.
Turns out that Sony’s uninstaller opens a new security breach in the system.
In order to uninstall Sony’s malware with Sony’s uninstaller, you’ve got to fill a form in their site requesting it. The browser will then load an ActiveX file called CodeSupport.
I should now say that ActiveX has been a good thing for programmers a long time ago. Nowadays it’s just a way to get malicious code running into people’s machines.
Well, CodeSupport stays in your machine and it is marked as a “safe” control even after you close the browser. Long story made short, that allows people who know that you have it and know your IP to run malicious scripts in your machine remotely. CodeSupport does NOT check if the incoming scripts and requests to run them come from Sony.
A guy called Ed Felten, teacher for the course of Computer Sciences in Princeton, said he was able to make malware that exploits this breach. He didn’t give details about it, though.
In time: seems like after this discovery, Sony released a second uninstaller that doesn’t open this breach. Still, I suggest anyone with Sony’s stuff installed in the machine to use Microsoft’s anti-spyware, not anything released by Sony.
Also, Sony is now exchanging CD’s with that cursed anti-piracy software of theirs for CD’s without it. Seems like the wound did make the giant move.
Edit: My two cents: while the first time seemed like pure evil, this turn it seems like incompetence from the programmers. Still, bad or dumb, I am not going anywhere near any (legitimate) software from Sony for a while, it’s bad for the health of computers.