Slashdot Mirror

← Back to Stories (view on slashdot.org)

Windows Vulnerable To 'Token Kidnapping' Attacks

Posted by timothy on Saturday July 17, 2010 @10:09AM from the token-of-my-affection dept.

cuppa+tea writes "More than a year after Microsoft issued a patch to cover privilege escalation issues that could lead to complete system takeover, a security researcher plans to use the Black Hat conference spotlight to expose new design mistakes and security issues that can be exploited to elevate privileges on all Windows versions, including the brand new Windows 2008 R2 and Windows 7."

3 of 126 comments (clear)

Apple replies by irrg · 2010-07-17 10:31 · Score: 1, Troll

After hearing about this exploit, an Apple VP referred to this as "Microsoft's Iphone 4".
This just in... by ascari · 2010-07-17 11:42 · Score: 0, Troll

Next release Windows is codenamed "Phoenix" see link for details:
http://www.nationalterroralert.com/updates/2009/02/13/kidnapping-capital-of-the-usa-phoenix-arizona/
Re:"... by any user with impersonation rights." by Lehk228 · 2010-07-17 16:17 · Score: 0, Troll

if you run IIS you may as well just post your admin password and social security number on your homepage

--
Snowden and Manning are heroes.