Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Windows Kernel Vulnerability Bypasses UAC

Posted by timothy on from the happy-thanksgiving-everyone dept.

xsee writes "A new vulnerability in the Windows kernel was disclosed Wednesday that could allow malware to attain administrative privileges by bypassing User Account Control (UAC). Combined with the unpatched Internet Explorer vulnerability in the wild this could be a very bad omen for Windows users."

4 of 303 comments (clear)

  1. Re:Bad omen? by Dolphinzilla · · Score: 3, Informative

    so if you read the story and watch the video - there is a very simple registry mod which will disable the exploit - so its something that can be deployed on a large scale (like at my company) pretty easily

  2. Re:Requires code to be run by gstoddart · · Score: 5, Informative

    noscript is not regular browsing

    No, it's better. It's like browsing that goes all the way to 11. Much of the suck just magically disappears.

    --
    Lost at C:>. Found at C.
  3. Nothing to do with UAC by harryjohnston · · Score: 3, Informative

    This is a perfectly ordinary elevation-of-privilege vulnerability. Just like every other elevation of privilege vulnerability it also happens to be capable of bypassing UAC's split-token protection, but the vulnerability itself isn't related to UAC in any way.

    In particular, if the workaround suggested in the article is correct, this vulnerability can't be used to escape from Internet Explorer Protected Mode (the other major function of UAC).

  4. Re:Bad omen? by Anonymous Coward · · Score: 3, Informative

    why do I have to install a third-party firewall and run third-party anti-malware software, that is, if I want to use it on the Internet?

    Probably because you're too retarded to know how to use a hardware firewall, the Windows built in software firewall, and MSE?

    *Posted via Windows 7 Professional behind a hardware firewall with the software firewall turned off*