Comments on: Windows 7 UAC code-injection vulnerability: video demonstration, source code released http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/ All the stuff about Microsoft and technology you haven't read anywhere else. Sat, 21 Nov 2009 07:05:34 +1100 http://wordpress.org/?v=2.8.6 hourly 1 By: faq-o-matic.net » Kompromisse zwischen Sicherheit und Bequemlichkeit? Das Beispiel UAC http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/comment-page-2/#comment-76274 faq-o-matic.net » Kompromisse zwischen Sicherheit und Bequemlichkeit? Das Beispiel UAC Thu, 25 Jun 2009 15:06:47 +0000 http://www.istartedsomething.com/?p=3643#comment-76274 [...] [Windows 7 UAC code-injection vulnerability: video demonstration, source code released - istartedsomething] http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstra... [...] [...] [Windows 7 UAC code-injection vulnerability: video demonstration, source code released - istartedsomething] http://www.istartedsomething.com/20090613/windows-7-uac-code-injection -vulnerability-video-demonstra... [...]

]]> By: Leo Davidson http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/comment-page-2/#comment-76252 Leo Davidson Wed, 24 Jun 2009 18:19:20 +0000 http://www.istartedsomething.com/?p=3643#comment-76252 (Though, yes, the terminal can grab passwords, just like a spoofed UAC prompt can. Sudo works very differently to UAC, though, and to claim they are equivalent is ridiculous.) (Though, yes, the terminal can grab passwords, just like a spoofed UAC prompt can. Sudo works very differently to UAC, though, and to claim they are equivalent is ridiculous.)

]]> By: Leo Davidson http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/comment-page-2/#comment-76250 Leo Davidson Wed, 24 Jun 2009 18:16:49 +0000 http://www.istartedsomething.com/?p=3643#comment-76250 Congratulations, STKD, on completely failing to understand how sudo works! To collect your free prize please run "sudo clue" on your imaginary Linux system. Have a nice day! Congratulations, STKD, on completely failing to understand how sudo works! To collect your free prize please run “sudo clue” on your imaginary Linux system. Have a nice day!

]]> By: STKD http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/comment-page-2/#comment-76240 STKD Wed, 24 Jun 2009 12:50:37 +0000 http://www.istartedsomething.com/?p=3643#comment-76240 Oh here we are in front of this highly secure Linux/OSX system I just found running. Let's try to run something... Oh bugger, it needs a password I don't have. I guess that's me well and truly defe... WAIT... what if... /types sudo passwrd in terminal Shit i defeated their uber complex security! LINUX IS NOW VULNERABLE! OSX IS NOW VULNERABLE! HOLY SHART DOES ANYONE KNOW ABOUT THIS?! Now to publish a tabloid-quality article for osnews about how every Linux/OSX system is unsecure to an admin. Oh here we are in front of this highly secure Linux/OSX system I just found running. Let’s try to run something…
Oh bugger, it needs a password I don’t have. I guess that’s me well and truly defe… WAIT… what if…
/types sudo passwrd in terminal
Shit i defeated their uber complex security! LINUX IS NOW VULNERABLE! OSX IS NOW VULNERABLE!
HOLY SHART DOES ANYONE KNOW ABOUT THIS?!
Now to publish a tabloid-quality article for osnews about how every Linux/OSX system is unsecure to an admin.

]]> By: [Windows 7] Source Code to UAC Injection Flaw Released - TechEnclave http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/comment-page-2/#comment-76223 [Windows 7] Source Code to UAC Injection Flaw Released - TechEnclave Wed, 24 Jun 2009 05:13:27 +0000 http://www.istartedsomething.com/?p=3643#comment-76223 [...] they have no interest in fixing it anyway - and Long Zheng, fellow advocate of fixing this bug, made a very clear demonstration video. More: Source Code to UAC Injection Flaw [...] [...] they have no interest in fixing it anyway – and Long Zheng, fellow advocate of fixing this bug, made a very clear demonstration video. More: Source Code to UAC Injection Flaw [...]

]]> By: Rob http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/comment-page-2/#comment-76218 Rob Tue, 23 Jun 2009 20:48:31 +0000 http://www.istartedsomething.com/?p=3643#comment-76218 "slither of doubt"? You mean "sliver of doubt". “slither of doubt”? You mean “sliver of doubt”.

]]> By: DotNetBurner - Security http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/comment-page-2/#comment-76211 DotNetBurner - Security Tue, 23 Jun 2009 16:32:42 +0000 http://www.istartedsomething.com/?p=3643#comment-76211 <strong>Windows 7 UAC code-injection vulnerability: video demonstration, source code released - istartedsomething...</strong> DotNetBurner - burning hot .net content... Windows 7 UAC code-injection vulnerability: video demonstration, source code released – istartedsomething…

DotNetBurner – burning hot .net content…

]]> By: IT资讯速客™ » Blog Archive » Windows 7 UAC存在漏洞 攻击源代码公开 http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/comment-page-2/#comment-76205 IT资讯速客™ » Blog Archive » Windows 7 UAC存在漏洞 攻击源代码公开 Tue, 23 Jun 2009 11:47:03 +0000 http://www.istartedsomething.com/?p=3643#comment-76205 [...] 知名Windows 7博客Long Zheng最近指出Windows 7用户账户控制(UAC)系统的默认设置存在安全漏洞,可能会导致用户被恶意软件绕过UAC进行攻击,让UAC成为虚设功能。微软对策声明说UAC并无问题,并声明无意修正此漏洞。在微软做出如上表示之后,Long Zheng目前在博客上公开了UAC注入漏洞攻击的源代码,并放出了攻击视频演示教程。 [...] [...] 知名Windows 7博客Long Zheng最近指出Windows 7用户账户控制(UAC)系统的默认设置存在安全漏洞, 可能会导致用户被恶意软件绕过UAC进行攻击,让UAC成 虚设功能。微软对策声明说UAC并无问题,并声明无 修正此漏洞。在微软做出如上表示之后,Long Zheng目前在博客上公开了UAC注入漏洞攻击的源代码, 放出了攻击视频演示教程。 [...]

]]> By: Leo Davidson http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/comment-page-2/#comment-76141 Leo Davidson Mon, 22 Jun 2009 14:12:56 +0000 http://www.istartedsomething.com/?p=3643#comment-76141 More food for thought from Chris Corio: http://www.withinwindows.com/2009/06/10/uac-uac-go-away-come-again-some-other-day/comment-page-1/#comment-4025 If you keep reading after his reply, skip my "7:38am" reply as I had a HTML mishap. I re-posted it with corrections directly afterwards ("7:52am"): http://www.withinwindows.com/2009/06/10/uac-uac-go-away-come-again-some-other-day/comment-page-1/#comment-4036 I also stumbled on this off-message post which is another example of MS doing a bad job of explaining what they're now saying UAC is supposed to be for (and not for), even internally: http://shippingseven.blogspot.com/2008/04/okso.html (Assuming the blog is really by someone working on Windows 7.) FWIW, I agree with what the blog says and am pointing it out because it contradicts "the message" and not because I think it's wrong. I agree with the blog that UAC is, or was, an imperfect but useful defence against some malware doing worse than it could, e.g. http://en.wikipedia.org/wiki/Conficker#Operation More food for thought from Chris Corio:

http://www.withinwindows.com/2009/06/10/uac-uac-go-away-come-again-som e-other-day/comment-page-1/#comment-4025

If you keep reading after his reply, skip my “7:38am” reply as I had a HTML mishap. I re-posted it with corrections directly afterwards (”7:52am”):

http://www.withinwindows.com/2009/06/10/uac-uac-go-away-come-again-som e-other-day/comment-page-1/#comment-4036

I also stumbled on this off-message post which is another example of MS doing a bad job of explaining what they’re now saying UAC is supposed to be for (and not for), even internally:

http://shippingseven.blogspot.com/2008/04/okso.html

(Assuming the blog is really by someone working on Windows 7.) FWIW, I agree with what the blog says and am pointing it out because it contradicts “the message” and not because I think it’s wrong. I agree with the blog that UAC is, or was, an imperfect but useful defence against some malware doing worse than it could, e.g. http://en.wikipedia.org/wiki/Conficker#Operation

]]> By: Windows 7 Hala Riskli http://www.istartedsomething.com/20090613/windows-7-uac-code-injection-vulnerability-video-demonstration-source-code-released/comment-page-2/#comment-76130 Windows 7 Hala Riskli Mon, 22 Jun 2009 10:30:36 +0000 http://www.istartedsomething.com/?p=3643#comment-76130 [...] [...] [...] [...]

]]>