On The Insider: Mew Moon Pulls $140.7 Million
BNET Business Network:
BNET
TechRepublic
ZDNet

January 19th, 2009

AutoPlay - Fun and social engineering

Posted by Adrian Kingsley-Hughes @ 9:20 am

Categories: Thoughts, Windows 7

Tags: Microsoft Windows 7, Social Engineering, Downadup, Microsoft Windows, Operating Systems, Software, Adrian Kingsley-Hughes

This is something that Microsoft needs to fix in Windows 7.

Downadup’s autorun.inf file uses an action keyword and icon extracted from shell32.dll to produce the following:

windows_vista_open_folder_to_view_files.png

The category is “Install or run program” but the text and icon are for “Open folder to view files“.

The first option will run Downadup, not good. The second “general” option is the choice that will safely open the USB drive.

Being curious, we tried this autorun.inf with Windows 7:

windows_7_open_folder_to_view_files.png

And the results for Windows 7 were the same as Vista’s.

It really shouldn’t be that easy to game the AutoPlay feature. Microsoft needs to fix this.

Adrian Kingsley-HughesAdrian is a technology journalist and author who has devoted over a decade to helping users get the most from technology. He also runs a popular blog called The PC Doctor. See his full profile and disclosure of his industry affiliations

Want to get in touch? Got a tip? Feel free to drop me a note! I ALWAYS respect anonymity. I'm also on Twitter (@the_pc_doc)

Right to Reply: Should any industry representatives wish to comment on any posts on Hardware 2.0, I will be happy to publish their reply verbatim on this blog.

Subscribe to Hardware 2.0 via Email alerts or RSS.

  • Talkback
  • Most Recent of 22 Talkback(s)
There is an easy fix in Windows 7
do a search for autoplay from the control panel or the start search, and the Autplay link will come up. You can specify what types of files get autoplayed and what should happen. OR you can just turn autoplay off for whichever ones you want.... (Read the rest)
Posted by: Drakaran Posted on: 02/08/09 You are currently: a Guest | | Terms of Use
What is the proposed fix?  NonZealot | 01/19/09
Would thast it were true.  TripleII | 01/19/09
This is NOT autorun  NonZealot | 01/19/09
You misread or I was unclear.  TripleII | 01/19/09
Fair enough  NonZealot | 01/19/09
Found a good link  TripleII | 01/19/09
Slightly misleading line from link  NonZealot | 01/19/09
@NonZealot: An infection could happen in this manner.  ye | 01/19/09
@Ye, slightly worse.  TripleII | 01/19/09
@TripleII: If you need the functionality then you need the functionality.  ye | 01/20/09
One BIG difference: None of the options on Linux is  hkommedal | 01/21/09
potential fixes - move RUN options lower and...  TG2 | 01/20/09
About 9m reasons to fix it  Alan Smithie | 01/19/09
Two pronged fix.  TripleII | 01/19/09
That's what the built in firewall does.  ye | 01/19/09
I know, however.  TripleII | 01/19/09
Then Linux fails this "test" too:  ye | 01/20/09
Sendmail is not default running.  TripleII | 01/20/09
It is on this particular version (OEL v4).  ye | 01/20/09
FIX IT! KILL! Automatic media Change events  madrucke@... | 01/20/09
There is an excellent fix  Michael Horowitz | 02/01/09
There is an easy fix in Windows 7  Drakaran | 02/08/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Click Here
advertisement

Recent Entries

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
advertisement

Archives

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

  • Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
  • More from IBM
  • Innovate your business' process model, play against the market, compete against others on our scoreboards and WIN! Try INNOV8 2.0: A BPM Simulator
  • Enabling Real-World Business Transformation through IBM Service Management Read the EMA Analyst Report
Click Here