- 抗疫期间,美国最丑陋的一个华人 [2020/03]
- 全国最大的小学生,该下课了 [2019/06]
- 这就是周永康的妻妹贾晓霞 [2014/08]
- 如果美国禁用微信,您准备好了吗? [2020/07]
- 多伦多撕开了爱国华人的画皮 [2019/08]
- 在美国出车祸后应该怎么办? [2013/03]
- 薄熙来左右两个警察,居然使用同一个警号 [2013/08]
- 美国若出现大暴乱,华人该怎么办? [2014/11]
- 在Roku上修复网星中文频道的方法 [2014/04]
- 中国人,你叫我怎么说你! [2019/08]
- 大阅兵传奇 [2015/09]
- 一不小心,东方之星破了三项世界纪录 [2015/06]
- 刘强东的事情完了没? 一切只是刚刚开始 [2018/09]
- 令计划的倒台砸了谁的牌坊? [2014/12]
- 寻找黄燕玲 [2020/02]
- 薄熙来的惨败是谁的胜利? [2012/04]
- 美国唐骏现形记 [2012/03]
- 人民公敌薄熙来 [2012/03]
- 刘晓波获奖,中国人的骄傲 [2010/10]
- 中国女人为什么嫁人特别难? [2012/01]
- 走好,谷歌 [2010/03]
- 伟哉大逃亡, 壮哉陈光诚! [2012/05]
- 党说,变天的时候快到了 [2012/06]
- 卡扎菲的今天是谁的明天? [2011/10]
- 文痞孔庆东 [2011/11]
- 中国没有男人 [2011/07]
- 多国联军打老卡,活该! [2011/03]
- 共产党万岁万万岁 —— 给我党90大寿的献辞 [2011/07]
- 中国左派的出路 [2012/10]
The University of Michigan Revision 2.4 – June 11, 2009
Summary We have discovered remotely-exploitable vulnerabilities in Green Dam, the censorship software reportedly mandated by the Chinese government. Any web site a Green Dam user visits can take control of the PC.
According to press reports, China will soon require all PCs sold in the country to include Green Dam. This software monitors web sites visited and other activity on the computer and blocks adult content as well as politically sensitive material.
We examined the Green Dam software and found that it contains serious security vulnerabilities due to programming errors. Once Green Dam is installed, any web site the user visits can exploit these problems to take control of the computer. This could allow malicious sites to steal private data, send spam, or enlist the computer in a botnet. In addition, we found vulnerabilities in the way Green Dam processes blacklist updates that could allow the software makers or others to install malicious code during the update process.
We found these problems with less than 12 hours of testing, and we believe they may be only the tip of the iceberg. Green Dam makes frequent use of unsafe and outdated programming practices that likely introduce numerous other vulnerabilities. Correcting these problems will require extensive changes to the software and careful retesting. In the meantime, we recommend that users protect themselves by uninstalling Green Dam immediately.