Some weeks ago, I blogged about a security bug in Windows 7′s UAC that allows malware to exploit the new auto elevation feature to run with administrator privileges without issuing a UAC prompt. A few other sites also took up this issue discovered by Leo Davidson. Ever since then I have been waiting for a [...]
Last week, I discussed some popular myths about the built-in Administrator account. Today, I will talk about a related myth. This myth isn’t spread by secret revealers, Microsoft’s marketing is the origin of this rumor. It is about this big change that UAC (User Account Control) supposedly brought to the Windows world. Security expert have [...]
I somehow must have missed this discussion about this serious Windows 7 User Account Control (UAC) security hole (perhaps “barn door” is a more appropriate term). Leo Davidson published his findings in the beginning of February. I wouldn’t bring this up now if this UAC vulnerability had been fixed in Windows 7 RC. Note that [...]
Some days ago, I stumbled across an article over at MS Windows Vista Compatible Software that explains how to enable or disable the Windows 7 built-in Administrator account. At first I thought that Microsoft must have changed something in Windows 7 with regard to the local administrator account. However, after reading the article, it became [...]
Steel Run As solves a problem that every Windows administrator faces sooner or later. It allows you to let standard users run a specific program with administrator privileges. This works in login scripts, in Windows domains or on standalone workstations. Important is that the user doesn’t have to know the administrator’s password, like with the [...]
By Michael Pietroforte - g+ - Thu, June 18, 2009 - 4 comments