Comments on: Windows 7 UAC code-injection vulnerability: video demonstration, source code released http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/ All the stuff about Microsoft and technology you haven't read anywhere else. Thu, 09 Feb 2012 22:23:58 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Windows 7 UAC flaw: “Pandora’s box of all vulnerabilities” | Software BF1 http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/#comment-143358 Windows 7 UAC flaw: “Pandora’s box of all vulnerabilities” | Software BF1 Fri, 03 Jun 2011 02:52:59 +0000 http://www.istartedsomething.com/?p=3643#comment-143358 [...] friend and colleague Rafael Rivera, who created a proof-of-concept behind this flaw. This video, available on Zheng’s website, details how the proof-of-concept works in a Windows 7 environment. « PreviousA Windows [...] [...] friend and colleague Rafael Rivera, who created a proof-of-concept behind this flaw. This video, available on Zheng’s website, details how the proof-of-concept works in a Windows 7 environment. « PreviousA Windows [...]

]]> By: Windows 7 UAC存在漏洞 攻击源代码公开 | 娶妻当如樱庭葵 http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/#comment-143274 Windows 7 UAC存在漏洞 攻击源代码公开 | 娶妻当如樱庭葵 Wed, 01 Jun 2011 22:43:52 +0000 http://www.istartedsomething.com/?p=3643#comment-143274 [...] 微软对此声明说UAC并无问题,并声明无意修正此漏洞。在微软做出如上表示之后,Long Zheng目前在博客上公开了UAC注入漏洞攻击的源代码,并放出了攻击视频演示教程。 [...] [...] 微软对此声明说UAC并无问题,并声明无意修正此漏洞 在微软做出如上表示之后,Long Zheng目前在博客上公开了UAC注入漏洞攻击的源代码, 放出了攻击视频演示教程。 [...]

]]> By: UAC issue fixed http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/#comment-137417 UAC issue fixed Tue, 21 Dec 2010 23:32:41 +0000 http://www.istartedsomething.com/?p=3643#comment-137417 This UAC issue has been fixed over a year ago. All of these comments are over 18 months old. This UAC issue has been fixed over a year ago. All of these comments are over 18 months old.

]]> By: faq-o-matic.net » Kompromisse zwischen Sicherheit und Bequemlichkeit? Das Beispiel UAC http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/#comment-76274 faq-o-matic.net » Kompromisse zwischen Sicherheit und Bequemlichkeit? Das Beispiel UAC Thu, 25 Jun 2009 15:06:47 +0000 http://www.istartedsomething.com/?p=3643#comment-76274 [...] [Windows 7 UAC code-injection vulnerability: video demonstration, source code released - istartedsomething] http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstra... [...] [...] [Windows 7 UAC code-injection vulnerability: video demonstration, source code released - istartedsomething] http://www.istartedsomething.com/20090613/windows-7-uac-code-injection -vulnerability-video-demonstra... [...]

]]> By: Leo Davidson http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/#comment-76252 Leo Davidson Wed, 24 Jun 2009 18:19:20 +0000 http://www.istartedsomething.com/?p=3643#comment-76252 (Though, yes, the terminal can grab passwords, just like a spoofed UAC prompt can. Sudo works very differently to UAC, though, and to claim they are equivalent is ridiculous.) (Though, yes, the terminal can grab passwords, just like a spoofed UAC prompt can. Sudo works very differently to UAC, though, and to claim they are equivalent is ridiculous.)

]]> By: Leo Davidson http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/#comment-76250 Leo Davidson Wed, 24 Jun 2009 18:16:49 +0000 http://www.istartedsomething.com/?p=3643#comment-76250 Congratulations, STKD, on completely failing to understand how sudo works! To collect your free prize please run "sudo clue" on your imaginary Linux system. Have a nice day! Congratulations, STKD, on completely failing to understand how sudo works! To collect your free prize please run “sudo clue” on your imaginary Linux system. Have a nice day!

]]> By: STKD http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/#comment-76240 STKD Wed, 24 Jun 2009 12:50:37 +0000 http://www.istartedsomething.com/?p=3643#comment-76240 Oh here we are in front of this highly secure Linux/OSX system I just found running. Let's try to run something... Oh bugger, it needs a password I don't have. I guess that's me well and truly defe... WAIT... what if... /types sudo passwrd in terminal Shit i defeated their uber complex security! LINUX IS NOW VULNERABLE! OSX IS NOW VULNERABLE! HOLY SHART DOES ANYONE KNOW ABOUT THIS?! Now to publish a tabloid-quality article for osnews about how every Linux/OSX system is unsecure to an admin. Oh here we are in front of this highly secure Linux/OSX system I just found running. Let’s try to run something…
Oh bugger, it needs a password I don’t have. I guess that’s me well and truly defe… WAIT… what if…
/types sudo passwrd in terminal
Shit i defeated their uber complex security! LINUX IS NOW VULNERABLE! OSX IS NOW VULNERABLE!
HOLY SHART DOES ANYONE KNOW ABOUT THIS?!
Now to publish a tabloid-quality article for osnews about how every Linux/OSX system is unsecure to an admin.

]]> By: [Windows 7] Source Code to UAC Injection Flaw Released - TechEnclave http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/#comment-76223 [Windows 7] Source Code to UAC Injection Flaw Released - TechEnclave Wed, 24 Jun 2009 05:13:27 +0000 http://www.istartedsomething.com/?p=3643#comment-76223 [...] they have no interest in fixing it anyway - and Long Zheng, fellow advocate of fixing this bug, made a very clear demonstration video. More: Source Code to UAC Injection Flaw [...] [...] they have no interest in fixing it anyway – and Long Zheng, fellow advocate of fixing this bug, made a very clear demonstration video. More: Source Code to UAC Injection Flaw [...]

]]> By: Rob http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/#comment-76218 Rob Tue, 23 Jun 2009 20:48:31 +0000 http://www.istartedsomething.com/?p=3643#comment-76218 "slither of doubt"? You mean "sliver of doubt". “slither of doubt”? You mean “sliver of doubt”.

]]> By: DotNetBurner - Security http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/#comment-76211 DotNetBurner - Security Tue, 23 Jun 2009 16:32:42 +0000 http://www.istartedsomething.com/?p=3643#comment-76211 <strong>Windows 7 UAC code-injection vulnerability: video demonstration, source code released - istartedsomething...</strong> DotNetBurner - burning hot .net content... Windows 7 UAC code-injection vulnerability: video demonstration, source code released – istartedsomething…

DotNetBurner – burning hot .net content…

]]>