Star Security or Usability: Maliciously Disabling UAC in Windows 7
Linked by Thom Holwerda on Fri 30th Jan 2009 19:13 UTC
Privacy, Security, Encryption At OSNews, we usually do not report on individual security breaches, because there are websites specifically tailored to that sort of thing. Still, every now and then, an interesting security issue pops up that deserves some attention. How about this one: through a simple VBScript, you can completely disable UAC in Windows 7. The reason for this might surprise you. Update: Microsoft's response.
E-mail Print r 2   · Read More · 26 Comment(s) http://osne.ws/g43
Permalink for comment 346276
To read all comments associated with this story, please click here.
Hmm
by linumax on Fri 30th Jan 2009 20:10 UTC
linumax
Member since:
2007-02-07

"We soon realized the implications are even worse than originally thought. You could automate a restart after UAC has been changed, add a program to the user’s startup folder and because UAC is now off, run with full administrative privileges ready to wreak havoc."

What if I'm not running as an Admin account? Because that's always what I do, whether on Leopard or Vista.

Reply Bookmark Score: 3