posted by Thom Holwerda on Wed 14th Feb 2007 19:12 UTC
IconJoanna Rutkowska has always been a big supporter of the Windows Vista security model. Until she stumbled upon a 'very severe hole' in the design of UAC and found out - from Microsoft officials - that the default no-admin setting isn't even a security mechanism anymore. Rutkowska believes UAC has a major flaw in the way it automatically assumes that all setup programs (application installers) should be run with administrator privileges.
e p (3)    22 Comment(s)

Technology White Papers

See More