Eye on Security: Vista 7 is 'Secure', They Promised
- Dr. Roy Schestowitz
- 2010-11-30 21:34:07 UTC
- Modified: 2010-11-30 21:34:07 UTC
Summary: Vista 7 -- just like Vista and its processors -- is still Swiss cheese based on the latest news
●
Breaking That Other OS
Yet another means of exploiting that other OS has been demonstrated by Sophos. An ordinary user can gain complete control of the system whether it is XP, Vista, “7ââ¬Â³ etc. simply by running some code that tweaks a key in the registry. A workaround is to create a new key to block users from changing keys in the registry… Duh… How’s that for backwards compatibility?
This is another demonstration that M$ has created a monster running on nearly every PC on the planet that invites compromise. Now, hundreds of millions of users will have to do some dance with updates or tweak the registry themselves to do something that M$ neglected to do many years ago.
●
'Nightmare' kernel bug lets attackers evade Windows UAC security
Microsoft is investigating reports of an unpatched vulnerability in the Windows kernel that could be used by attackers to sidestep an important operating system security measure.
One security firm dubbed the bug a potential "nightmare," but Microsoft downplayed the threat by reminding users that hackers would need a second exploit to launch remote attacks.
●
Newly discovered Windows kernel flaw bypasses UAC
Last week an exploit for a Windows kernel flaw was published by an unknown source. Presumably as a joke, details of the flaw, along with proof-of-concept code, were published on Code Project. Code Project is a programmer peer support community, containing many tutorials and useful snippets of code to assist developers. Malware developers are not the usual target audience for posts made to the site, and so perhaps unsurprisingly, the article has been removed (though is mirrored here).
The flaw is a privilege escalation vulnerability. Anyone who can run code on a Windows system can elevate her privileges to the highest level, and accordingly install back doors, compromise sensitive data, and so on. The flaw lies in a critical Windows driver called win32k.sys. The driver inappropriately handles certain data stored in the registry—data that is stored on a per-user basis, and hence accessible to any unprivileged program. The proof-of-concept code uses this flaw to elevate the privileges of the user running the demo code; it could just as well be used to install a back door or other malware.
Recent Techrights' Posts
- Sven Luther, Lucy Wayland & Debian's toxic culture
- Reprinted with permission from disguised.work
-
- Links 19/04/2024: Israel Fires Back at Iran and Many Layoffs in the US
- Links for the day
- Russell Coker & Debian: September 11 Islamist sympathy
- Reprinted with permission from disguised.work
- Sven Luther, Thomas Bushnell & Debian's September 11 discussion
- Reprinted with permission from disguised.work
- G.A.I./Hey Hi (AI) Bubble Bursting With More Mass Layoffs
- it's happening already
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Thursday, April 18, 2024
- IRC logs for Thursday, April 18, 2024
- Coroner's Report: Lucy Wayland & Debian Abuse Culture
- Reprinted with permission from disguised.work
- Links 18/04/2024: Misuse of COVID Stimulus Money, Governments Buying Your Data
- Links for the day
- Gemini Links 18/04/2024: GemText Pain and Web 1.0
- Links for the day
- Gemini Links 18/04/2024: Google Layoffs Again, ByteDance Scandals Return
- Links for the day
- Gemini Links 18/04/2024: Trying OpenBSD and War on Links Continues
- Links for the day
- IRC Proceedings: Wednesday, April 17, 2024
- IRC logs for Wednesday, April 17, 2024
- Over at Tux Machines...
- GNU/Linux news for the past day
- North America, Home of Microsoft and of Windows, is Moving to GNU/Linux
- Can it top 5% by year's end?
- [Meme] The Heart of Staff Rep
- Rowan heartily grateful
- Management-Friendly Staff Representatives at the EPO Voted Out (or Simply Did Not Run Anymore)
- The good news is that they're no longer in a position of authority
- Microsofters in 'Linux Foundation' Clothing Continue to Shift Security Scrutiny to 'Linux'
- Pay closer attention to the latest Microsoft breach and security catastrophes
- Links 17/04/2024: Free-Market Policies Wane, China Marks Economic Recovery
- Links for the day
- Gemini Links 17/04/2024: "Failure Is An Option", Profectus Alpha 0.5 From a Microsofter Trying to Dethrone Gemini
- Links for the day
- How does unpaid Debian work impact our families?
- Reprinted with permission from Daniel Pocock
- Microsoft's Windows Falls to All-Time Low and Layoffs Reported by Managers in the Windows Division
- One manager probably broke an NDA or two when he spoke about it in social control media
- When you give money to Debian, where does it go?
- Reprinted with permission from Daniel Pocock
- How do teams work in Debian?
- Reprinted with permission from Daniel Pocock
- Joint Authors & Debian Family Legitimate Interests
- Reprinted with permission from Daniel Pocock
- Bad faith: Debian logo and theme use authorized
- Reprinted with permission from Daniel Pocock
- Links 17/04/2024: TikTok Killing Youth, More Layoff Rounds
- Links for the day
- Jack Wallen Has Been Assigned by ZDNet to Write Fake (Sponsored) 'Reviews'
- Wallen is selling out. Shilling for the corporations, not the community.
- Links 17/04/2024: SAP, Kwalee, and Take-Two Layoffs
- Links for the day
- IRC Proceedings: Tuesday, April 16, 2024
- IRC logs for Tuesday, April 16, 2024
- Over at Tux Machines...
- GNU/Linux news for the past day