'We said we wouldn't but we're going to now...'
By Jo Best
Published: 20 January 2005 15:00 GMT
Last week, Microsoft declared Windows Media Player's method of handling DRM licences wasn't a security flaw, and said they wouldn't be issuing a patch. This week, the Redmond giant seems to have changed its mind.
Antivirus company Panda Software warned last week that hackers are using the player's DRM tool to fool people into downloading spyware and viruses.
However, Microsoft said at the time that the issue was not a flaw because it relied on social engineering, rather than automatic infection, to get users to download malware. Two Trojans are already in the wild designed to exploit the mechanism, which affects both Windows Media Player 10 and XP SP2.
Microsoft is sticking to guns and maintaining that the fact that an anti-piracy feature can be exploited does not a security flaw make - but Redmond is saying it will patch the programs anyway.
A Microsoft spokeswoman said: "Microsoft stated several weeks ago that we were looking into the issue and that this problem was not a security flaw. That position has not changed."
"After further review, we determined that it made sense to offer an update to consumers that would allow them to have greater default control over licence acquisition elements within the Player... Microsoft will release an update in the next 30 days," she added.
ZDNet's Dan Ilett contributed to this report
"This week, the Redmond giant has changed its mind...
Anonymous
This is the second time that Microsoft have said a...
Craig
I tried it for the first time a week ago. My expe...
Anonymous
Redhat ES 4, 5, Windows 2003/8 and Solrais 10 build and patch management in a Hosting Centre environment If you are a conscientious team player with ...
Other activities would include booking and scheduling rig usage, ensuring all Government Furnished Equipment remains traceable and ensuring currency ...
Capable of running multiple projects at the same time, handling the priorities and conflicts this brings. Involvement in the development of BC&T ...
Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Naked CIO Naked CIO: Should you monitor staff? Somebody's watching you
Elinor Mills Why 1970s hackers had 'whiz kid' status Q&A: Kevin Mitnick - blackhat hacker turned good guy