Windows 7 UAC flaw: "Pandora's box of all vulnerabilities"

The UAC flaw, a serious issue bubbling away underneath the surface of Microsoft’s next operating system, has been described as the “Pandora’s box of security vulnerabilities”. But what is it exactly? Where did it all start from, what is the vulnerability and where do we go from here? Hopefully this will explain it a bit better.

The background

UAC, or User Account Controls, made its first appearance in Windows Vista as a precautionary measure to ensure the user doesn’t modify something which would change a setting which would effect the overall stability or usage of the computer. It also served as a preventative control to make sure programs and applications wouldn’t run without your express permission, or an application changing your settings without you being fully aware of it. This came in the form of an annoying popup box, I’m sure you won’t have any problem in remembering:



Standard users would be able to modify “user settings“, such as the wallpaper, screensavers, how things look on screen and suchlike. If standard users wanted to modify “global settings“, settings which affected the experience of other users such as screen resolution or installing applications, they would be prompted to do so by UAC. To enable standard users to modify global settings, they would need to be “elevated” to temporary administrator status to do this. Afterwards, the user would revert back to standard user status.

Turning UAC off in Vista had a bit of a trick behind it. It wasn’t a case of simply ticking a box, rather having to go through a hidden Windows utility and launching a command process; it wasn’t deemed necessary for an ordinary end-user to disable it.

However, through much complaining, hissy fits and multiple workarounds being circumvented across the web, Microsoft buckled and tamed down UAC in an effort to be less intrusive, less annoying but more secure.

Instead of taming the system, they’ve blown its bloody head off.

The vulnerability

In Windows 7, the settings have changed for UAC, allowing the system to be more malleable and flexible for users. Certain applications which are digitally signed are fast-tracked through UAC by default to reduce the unnecessary user interaction. The vulnerability shows itself when this third-party application calls on malicious code “by proxy” through an existing Windows application, which never invokes the UAC prompt.

To put it simply, through application piggybacking, it allows malware to be automatically elevated to administrator user status which in turn allows it full, unrestricted access to the computer and global settings.

Long Zheng, Windows enthusiast, evangelist, student and campaigner of this flaw, spoke to me earlier today. He has written many times on this, along with his friend and colleague Rafael Rivera, who created a proof-of-concept behind this flaw. This video, available on Zheng’s website, details how the proof-of-concept works in a Windows 7 environment.

Comments

Post a Comment

ඔබේ අදහස් මට සවියකි

Popular posts from this blog

New Apple IPhone 3G S Comes Out

Image
Apple 3Gs  has been release, This has Apple 3.0 OS and it has massive Vedio and Audio capabilities too. Value is nearly 70000 thousand.  Feathures of new Apple 3GS ....... 1. Increased speed:  This is the reason, after all, it’s called the iPhone 3 G  Speed . The RAM is now 256 MB, the MHz has been increased, and there is a new PowerVR SGX graphics chip. Loading times, processing speeds, and more are upgraded. 2. Three megapixel camera:  The camera has been upgraded from 2 megapixels and has autofocus. Tap on an area of the screen to help focus. 3. Video recording:  It took long enough, but the iPhone 3G S records video. 4. Video editing:  To make up for the lack of video in the iPhone 3G, the new iPhone has some nifty video editing software. The software is demoed on the above clip from  Late Night With Jimmy Fallon . 5. Voice recognition:  You can talk to the phone and it’ll make phone calls and play music. This is more advanced than your standard “Call Jessica” functionality. 6. Nik
Read more

ජීව්තයට බුදුදහමෙන් බිදක්

ඉතාම වටිනා ධර්මදේශනා කිහිපයක් ෂෙයා කරන්න හිතුනේ අද සමාජයේ අපිට නියම බුදුදහම ඇහෙන්නේ නැති කාලයක නියම බුදු දහම කුමක්දැයි පෙන්වාදෙමින් සන්දිට්ඨික වු මේ ධර්මයේ වටිනාමකම කියාදෙන අතිපුජ්යය කිරිබත්ගොඩ ලොකුස්වාමින්වහන්සේගේ මෙහෙවරට පුංචි ශක්තියක් වීමටය. Download form Google Drive https://drive.google.com/?tab=mo&authuser=0#folders/0B_yBDRNe7oGTT1NibHNXWGpEXzA
Read more

“හිස් පුද්ගලයන්ගේ නින්දා අපහාස කිසිසේත්ම ගණන් ගත යුතු නැහැ”

Image
මේ ලෝකය හරිම අමුතු යි. යහපත් දෙයක් කළත් බණිනවා. නොකළත් බණිනවා. භාවනා කළත් බණිනවා. භාවනා නොකළත් බණිනවා. බණ කිව්වත් බණිනවා. බණ නොකිව්වත් බණිනවා. සිල්වත්ව ජීවිතය ගත කළත් බණිනවා. දුස්සීලයන්ටත් බණිනවා. ඒ නිසා නින්දා අපහාස කියන්නේ අසත්පුරුෂයන්ගේ සතුට පිණිස පවතින දෙයක්. අසත්පුරුෂයන් සතුටු වන්නේ අනුන්ට නින්දා අපහාස කිරීමෙන්. අනුන්ට ගැරහීමෙන්. පව්කාර පුද්ගලයන් නිතරම ඊර්ෂ්‍යාවෙන් කල්ගෙවනවා. තව කෙනෙකුට ගෞරවයක් ලැබෙනවාට, ප‍්‍රශංසාවක් ලැබෙනවාට කැමති නැහැ. ඒ නිසා යහපත් වැඩක් කරන්නට හදන විටත්, එය කඩාකප්පල් කරන අදහසින් යහපත් පුද්ගලයාට පවා නින්දා අපහාස කරනවා. ගරහනවා. අභූත චෝදනා කරනවා. එවැනි පුද්ගලයන්ගේ ඇසුර ඉතාමත්ම භයානකයි. එවැනි පුද්ගලයන්ගේ ඇසුරෙන් ලෝකයේ කාටවත් යහපතක් සිදුවන්නේ නැහැ. තමාටත් අයහපතක් සලසන, අනුන්ටත් අයහපතක් සලසන එවැනි පුද්ගලයන්ව හඳුනාගෙන දුරින්ම දුරු කළ යුතුයි. පවිටු පුද්ගලයන් ලාභ සත්කාර, කීර්ති ප‍්‍රශංසා වලට ඉතාමත්ම කෑදරයි. ඉතින් එබඳු පුද්ගලයන් හැම තිස්සේම කල්පනා කරන්නේ ලාභ, සත්කාර, කීර්ති, ප‍්‍රශංසා ලබාගෙන ජීවත් වෙන ආකාරය විතරයි. ඔවුන්ට කෙලෙහි ගුණ මාත‍්‍රයක්වත් පිහිටන්නේ නැහැ. කෙ
Read more