Reply With QuoteWohoo, I guess.
Might want to clean up that list a little bit, I guess. AC III and BoA 4 aren't available yet, Your Shape: Fitness Evolved, Pure Football, and Just Dance 3 never got released on PC. I'd also assume that Anno 2070 does support Uplay?
If you have any of the following games installed which use "Uplay" , there is a potential security issue with it detailed over here on RPS. As of right now its not known exactly how serious it is, but you may want to uninstall Uplay as a precaution, and check your browser plugins.
From RPS: Update: the flaw lies specifically in a browser plugin Uplay quietly installs, and the general consensus is now that’s all you need to remove to protect yourself.
Firefox:
Tools – Add-ons – Plugins – Disable the Uplay and Uplay PC Hub plugins
Chrome:
Visit about:plugins and disable
Opera:
Settings – Preferences – Advanced – Downloads – Search “Uplay”, delete
From PCG: Ubi says “We have made a forced patch to correct the flaw in the browser plug-in for the Uplay PC application that was brought to our attention earlier today. We recommend that all Uplay users update their Uplay PC application without a Web browser open. This will allow the plug-in to update correctly. An updated version of the Uplay PC installer with the patch also is available from Uplay.com.
Ubisoft takes security issues very seriously, and we will continue to monitor all reports of vulnerabilities within our software and take swift action to resolve such issues.”
Last edited by Web_cole; 07-30-2012 at 09:54 AM.
Wohoo, I guess.
Might want to clean up that list a little bit, I guess. AC III and BoA 4 aren't available yet, Your Shape: Fitness Evolved, Pure Football, and Just Dance 3 never got released on PC. I'd also assume that Anno 2070 does support Uplay?
I just copy pasta'd the list from RPS, I'll leave it as is for now, as I have no actual hands on experience with Ubi DRM one way or the other.
Well I sure as hell don't remember Driver asking me if it could install a browser plug-in to firefox while I wasn't looking.
I thought Firefox was supposed to stop third parties shitting up my browser with crapware add ons without permission!!
No warning of any kind to users from ubi yet?
This is really just breaking right now as far as I'm aware.Originally Posted by djotefsoup
PCGamer
I have no doubt this will be fixed today or tomorrow. Not a big problem for me, I disabled those two plugins the second I read about it.We’ve contacted Ubisoft for comment and they’re “looking into” the problem.
It does seem like an incredibly incompetent thing to do though.
Ubi just can't catch a break, can they?
It's like another day, another shit by Ubi.
I didn't even know Uplay installed browser plugin. I don't remember ever giving permission. All I know is they got a new Uplay frontend and I have to install it to play the games I bought.
FUUUUUUUUUUUU
Found it in Chrome, but oddly couldn't find it in IE. I guess it gets installed on whatever your default browser is?
I guess so, I also have it only in Firefox but not IE.
Assassins Creed II was too good a deal on steam... i fell for it even as i had sworn to never ever buy a ubi game again... What can i say, im an idiot!
I do not see anything about plugins in chrome, do you mean the extensions or is that something separate?
Great, another "always on" DRM that makes creates a vulnerability of the end-user being hacked.
Looks like it's not just your default browser. I have both Chrome and Firefox on my computer and the UPlay plugin was in both browsers.
Didn't know they could infect Opera like that... Luckily About:Config did not show anything in my Opera.
Come to think of it, I haven't gotten a Ubisoft title in ages thanks to them hating the PC, so not much of a chance of getting infected.
Thanks for the headsup though.
There's a Just Dance 3 for PC?
chrome://plugins/
Well the problem has been fixed! That was quick.
Changelog:
Fix addressing browser plugin.Plugin now only able to open Uplay application.
I have anno 2070 and it has never installed any plug-ins anywhere.
Appearantly it's linked to UPlay 2.0 which came out a couple of days ago.
Seems its updating itself once you start a UPlay linked game.
So maybe you didn't run Anno 2070 in the last couple of days and therefore are still on UPlay 1.1.?
fixed?
Maybe, still doesn't appear to be any "official" statement or acknowledgement from Ubi on the matter though, so proceed with caution.
Why do they need a plugin in the first place? To launch games? Steam doesn't use one. But to be fair lot's of application want to install plugins that's why I just just set click to play option on chrome for all plugins.
BF3 has one too, and to be honest, I love it. It's great on a multi-monitor setup to have the game loading the next level while I can browse through all my geeky BF3 stats. I assumed I'd hate it, until I saw it working, and I was very imrpessed by it. Pity about the games general load times, and problems changing servers (you need to restart).
I suppose it's an feature done thinking in the future. Maybe they plan to have a uplay.com site with all your games, a social network and your stats and friends, a bit like the BF3 battlelog, with the option of launching the games from the web. In that case, it makes sense to have the plugin.
From PCG: Ubi says “We have made a forced patch to correct the flaw in the browser plug-in for the Uplay PC application that was brought to our attention earlier today. We recommend that all Uplay users update their Uplay PC application without a Web browser open. This will allow the plug-in to update correctly. An updated version of the Uplay PC installer with the patch also is available from Uplay.com.
Ubisoft takes security issues very seriously, and we will continue to monitor all reports of vulnerabilities within our software and take swift action to resolve such issues.”
Fair enough, interesting applications could exist with plugin and it would be better that uplay one would be unique for all ubi games, for example if medal of honor uses a similar system for multplayer as BF3 would they have two different plugins? That would extend even more the number of plugins that is not a good thing given that evert one of them is a possible security exploit. Anyway waiting for the Uplay team to say that Win8 is a catastrophe because IE10 Metro is plugin free :)
Well it was a mickey-mouse clown-shoes amateur security hole, but at least they fixed it quickly when notified.
I hate wen *anybody* install anything on my browser withouth my permission.
Is a bad practice. A big NO-NO, and everyone sould be stay the hell away from installing silently crap on my browser. If you really need it, let me make a choice about it.
Fking Ubisoft. So what does this plugin do other than forcefully install itself?
Posting Permissions
