Report Comment to a Moderator Our Moderators review all comments for abusive and offensive language, and ensure comments are from Verified Users only.
Please report a comment only if you feel it requires our urgent attention.
I understand, report it. Cancel

Ubisoft patches uPlay exploit

By Ben Strauss

Ubisoft patches uPlay exploit

Mon 30 Jul 2012 7:09pm GMT / 3:09pm EDT / 12:09pm PDT

Ubisoft "takes security issues very seriously"

French publisher Ubisoft, which earlier today came under fire for a rather ghastly exploit within the uPlay system, has confirmed a fix for the potentially devastating security flaw that could allow a website to remotely take control of a user's PC.

The exploit, which would allow a hacker to view files on a personal computer accessed through Ubisoft's uPlay service, has caused a stir among the hacking community for how dangerous it could have gotten. Essentially, Ubisoft's uPlay service acts as a gate to launch games on the PC through a web browser. With the exploit, the service could be used to open any file on the computer.

With a fix, Ubisoft has stated that "We have made a forced patch to correct the flaw in the browser plug-in for the uPlay PC application that was brought to our attention earlier today."

"We recommend that all uPlay users update their uPlay PC application without a Web browser open. This will allow the plug-in to update correctly. An updated version of the uPlay PC installer with the patch also is available from"

Ubisoft added that it "takes security issues very seriously, and we will continue to monitor all reports of vulnerabilities within our software and take swift action to resolve such issues."

Thus far there has been no word on how many, if any, users were affected by this exploit as Ubisoft has not commented on the matter further.

From Recommendations by Taboola

1 Comment

It's good to see Ubisoft fixing this so quickly. If they want Uplay to be taken seriously, then security should be their number one priority, above the DRM and UI issues that most of us like to complain about. I look forward to the day when Ubisoft are confident enough in Uplay to drop their restrictive DRM methods entirely.

Incidentally, I have noticed Uplay written in a variety of ways, including uPlay, UPlay and U-Play. Perhaps Ubisoft should have chosen a name that was immediately obvious and memorable? This is something that Valve definitely got right in Steam, no matter what people think of their service.

Posted:4 years ago


Login or register to post

Take part in the GamesIndustry community

Register now