You can trust VideoGamer. Our team of gaming experts spend hours testing and reviewing the latest games, to ensure you're reading the most comprehensive guide possible. Rest assured, all imagery and advice is unique and original. Check out how we test and review games here
Ubisoft has released a patch to “correct the flaw” in Uplay’s security.
In a statement provided to VideoGamer.com, Ubisoft said that it had “made a forced patch to correct the flaw in the browser plug-in for the Uplay PC application that was brought to our attention [yesterday].”
Ubisoft recommends that all Uplay users update their Uplay PC application without a web browser open. Updating the application with a browser open, the statement suggest, could lead to the update failing.
An updated version of the Uplay PC installer with the patch applied is also available to download from Uplay.com, Ubisoft states.
It was revealed yesterday that Ubisoft’s Uplay PC app, which rewards players who play a range of Ubisoft’s title with free content, allowed arbitrary root execution, potentially granting hackers unauthorised access to the user’s PC.
According to the BBC, the exploit was initially spotted by Tavis Ormandy, a Google employee who noticed that Uplay’s installation procedure “creates a browser plug-in for its accompanying Uplay launcher, which grants unexpectedly (at least to me) wide access to websites.”
“Ubisoft takes security issues very seriously,” said the firm, “and we will continue to monitor all reports of vulnerabilities within our software and take swift action to resolve such issues.”
About the Author
