Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Microsoft changes Windows 7 UAC after new exploit code surfaces

04 Feb 2009   #1
Airbot

Windows 7 Ultimate x64 SP1
 
 
Microsoft changes Windows 7 UAC after new exploit code surfaces

Quote:
February 4, 2009 (Computerworld) A pair of Windows bloggers posted more proof-of-concept code today that subverts an important security feature of Windows 7, a problem Microsoft knew about as long ago as last October and which one of its software engineers said would be fixed in the beta.
Today, however, the company said it had addressed the issue in post-beta builds that have not yet been released to the public.
more: Microsoft changes Windows 7 UAC after new exploit code surfaces


My System SpecsSystem Spec
.
05 Feb 2009   #2
pooch

Windows 7 Ultimate x64
 
 

Quote   Quote: Originally Posted by Airbot View Post
the company said it had addressed the issue in post-beta builds that have not yet been released to the public.
Well that's handy isn't it
My System SpecsSystem Spec
05 Feb 2009   #3
garysgold

Vista Ult 64 bit Seven Ult RTM x64
 
 

Guess we'll have to wait.
My System SpecsSystem Spec
.

05 Feb 2009   #4
Dragor1

Windows 7 Ultimate (64 bit) dual boot with Fedora KDE
 
 

Question: Does UAC "remember" which programs you have allowed to be run? I think it would be better to have it this way, don't you think? It could even be taken one step further by "remembering" what actions of a program are allowed for example opening was allowed before but ig you try saving, then UAC would prompt you and then never agin, sorta like that!
My System SpecsSystem Spec
05 Feb 2009   #5
limneos

Windows 7 RC 7100 32bit/64bit
 
 

Quote   Quote: Originally Posted by Dragor1 View Post
Question: Does UAC "remember" which programs you have allowed to be run? I think it would be better to have it this way, don't you think? It could even be taken one step further by "remembering" what actions of a program are allowed for example opening was allowed before but ig you try saving, then UAC would prompt you and then never agin, sorta like that!
And then any malicious application would just "read" from the registry the allowed apps and rename itself to them... I think there's a reason they haven't included an "remember my decision" option.
My System SpecsSystem Spec
05 Feb 2009   #6
Dragor1

Windows 7 Ultimate (64 bit) dual boot with Fedora KDE
 
 

Quote   Quote: Originally Posted by limneos View Post
And then any malicious application would just "read" from the registry the allowed apps and rename itself to them... I think there's a reason they haven't included an "remember my decision" option.

If thats the case, then the option to remember that a certain program to allow access to the internet via firewall should also be flawed!

Afterall, worms and viruses can do that as well, can't they?

The reason I said that thing in my previous post is so that UAC should become less "intrusive" so that people are not frustrated by it but welcome it as an actual seurity feature as they have accepted prompts by firewalls as I mentioned!

Thanks!
My System SpecsSystem Spec
06 Feb 2009   #7
dmex

 

Quote   Quote: Originally Posted by Dragor1 View Post
Question: Does UAC "remember" which programs you have allowed to be run? I think it would be better to have it this way, don't you think? It could even be taken one step further by "remembering" what actions of a program are allowed for example opening was allowed before but ig you try saving, then UAC would prompt you and then never agin, sorta like that!

Microsoft was threatened by OEMs during the PDC in 2005 after they demo`ed Vista beta2 saying they would use this "White list" for all their programs during setup because they didnt want UAC, they didnt like UAC so they would bypass UAC...

Since this was something Microsoft didn't want happening they removed it.

You can use the Task Scheduler to run applications without UAC and create a desktop shortcut to launch the task, while this isn't exactly a "White list" it does the exact same thing but was designed exactly the same
My System SpecsSystem Spec
Reply

 Microsoft changes Windows 7 UAC after new exploit code surfaces




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Microsoft confirms XP zero-day exploit.
For those of us that still use or have XP loaded... Hackers exploit Windows XP zero-day, Microsoft confirms Source Hackers exploit Windows XP zero-day, Microsoft confirms - Computerworld Tool/fix provided - Microsoft Fix It
News
New IE exploit warning from Microsoft.
Source : Microsoft/Windows - Microsoft Working on Patch for IE ActiveX Vulnerability I thought id post this as most members of the forum Dual boot with older Operating Systems than 7.
News


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 11:24.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App