Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Newly discovered Windows kernel flaw bypasses UAC


01 Dec 2010   #1
JMH

Win 7 Ultimate 64-bit. SP1.
 
 
Newly discovered Windows kernel flaw bypasses UAC

Quote:
Last week an exploit for a Windows kernel flaw was published by an unknown source. Presumably as a joke, details of the flaw, along with proof-of-concept code, were published on Code Project. Code Project is a programmer peer support community, containing many tutorials and useful snippets of code to assist developers. Malware developers are not the usual target audience for posts made to the site, and so perhaps unsurprisingly, the article has been removed (though is mirrored here).

The flaw is a privilege escalation vulnerability. Anyone who can run code on a Windows system can elevate her privileges to the highest level, and accordingly install back doors, compromise sensitive data, and so on. The flaw lies in a critical Windows driver called win32k.sys. The driver inappropriately handles certain data stored in the registry—data that is stored on a per-user basis, and hence accessible to any unprivileged program. The proof-of-concept code uses this flaw to elevate the privileges of the user running the demo code; it could just as well be used to install a back door or other malware.

This is not the first such flaw in Windows to be discovered this year. Several flaws in the win32k.sys driver have been made public, and typically they allow privilege escalation in much the same way as this one. Privilege escalation can be a useful tool in the malware developer's arsenal—it means that a system can be infected even if the user is otherwise following best practices—but it does not itself allow code execution. Privilege escalation flaws hence have to be combined with other attacks to become serious issues.
Newly discovered Windows kernel flaw bypasses UAC


My System SpecsSystem Spec
.

01 Dec 2010   #2

Windows 7 Home Premium
 
 

You know, it worries me when tech news sources start putting out the details of how you can exploit a computer. What if some malware developer stumbles upon it? I think they should kind-of keep quiet about such big vulnerabilities and just patch them when the time comes. But maybe I'm wrong (and I probably am lol) since I'm no programmer or anything of the such (although I do plan on taking classes in the future ).
My System SpecsSystem Spec
01 Dec 2010   #3
Lee

Win 7 Pro x64, VM Win XP, Win7 Pro Sandbox, Kubuntu 11
 
 

Quote   Quote: Originally Posted by Wii Master 64 View Post
You know, it worries me when tech news sources start putting out the details of how you can exploit a computer. What if some malware developer stumbles upon it? I think they should kind-of keep quiet about such big vulnerabilities and just patch them when the time comes. But maybe I'm wrong (and I probably am lol) since I'm no programmer or anything of the such (although I do plan on taking classes in the future ).
Would normally agreed with you, albeit it is sometimes the right thing to do. The IT people throughout businesses, school/college, etc., need to know these thing so they can be in a position to hopefully stop or at least attempt to control what just might be a huge problem.
My System SpecsSystem Spec
.


Reply

 Newly discovered Windows kernel flaw bypasses UAC




Thread Tools




Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 07:06 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33