Eye on Security: Vista 7 is 'Secure', They Promised
- Dr. Roy Schestowitz
- 2010-11-30 21:34:07 UTC
- Modified: 2010-11-30 21:34:07 UTC
Summary: Vista 7 -- just like Vista and its processors -- is still Swiss cheese based on the latest news
●
Breaking That Other OS
Yet another means of exploiting that other OS has been demonstrated by Sophos. An ordinary user can gain complete control of the system whether it is XP, Vista, “7ââ¬Â³ etc. simply by running some code that tweaks a key in the registry. A workaround is to create a new key to block users from changing keys in the registry… Duh… How’s that for backwards compatibility?
This is another demonstration that M$ has created a monster running on nearly every PC on the planet that invites compromise. Now, hundreds of millions of users will have to do some dance with updates or tweak the registry themselves to do something that M$ neglected to do many years ago.
●
'Nightmare' kernel bug lets attackers evade Windows UAC security
Microsoft is investigating reports of an unpatched vulnerability in the Windows kernel that could be used by attackers to sidestep an important operating system security measure.
One security firm dubbed the bug a potential "nightmare," but Microsoft downplayed the threat by reminding users that hackers would need a second exploit to launch remote attacks.
●
Newly discovered Windows kernel flaw bypasses UAC
Last week an exploit for a Windows kernel flaw was published by an unknown source. Presumably as a joke, details of the flaw, along with proof-of-concept code, were published on Code Project. Code Project is a programmer peer support community, containing many tutorials and useful snippets of code to assist developers. Malware developers are not the usual target audience for posts made to the site, and so perhaps unsurprisingly, the article has been removed (though is mirrored here).
The flaw is a privilege escalation vulnerability. Anyone who can run code on a Windows system can elevate her privileges to the highest level, and accordingly install back doors, compromise sensitive data, and so on. The flaw lies in a critical Windows driver called win32k.sys. The driver inappropriately handles certain data stored in the registry—data that is stored on a per-user basis, and hence accessible to any unprivileged program. The proof-of-concept code uses this flaw to elevate the privileges of the user running the demo code; it could just as well be used to install a back door or other malware.
Recent Techrights' Posts
- [Meme] The Heart of Staff Rep
- Rowan heartily grateful
- Microsoft's Windows Falls to All-Time Low and Layoffs Reported by Managers in the Windows Division
- One manager probably broke an NDA or two when he spoke about it in social control media
-
- Gemini Links 18/04/2024: Google Layoffs Again, ByteDance Scandals Return
- Links for the day
- Gemini Links 18/04/2024: Trying OpenBSD and War on Links Continues
- Links for the day
- IRC Proceedings: Wednesday, April 17, 2024
- IRC logs for Wednesday, April 17, 2024
- Over at Tux Machines...
- GNU/Linux news for the past day
- North America, Home of Microsoft and of Windows, is Moving to GNU/Linux
- Can it top 5% by year's end?
- Management-Friendly Staff Representatives at the EPO Voted Out (or Simply Did Not Run Anymore)
- The good news is that they're no longer in a position of authority
- Microsofters in 'Linux Foundation' Clothing Continue to Shift Security Scrutiny to 'Linux'
- Pay closer attention to the latest Microsoft breach and security catastrophes
- Links 17/04/2024: Free-Market Policies Wane, China Marks Economic Recovery
- Links for the day
- Gemini Links 17/04/2024: "Failure Is An Option", Profectus Alpha 0.5 From a Microsofter Trying to Dethrone Gemini
- Links for the day
- How does unpaid Debian work impact our families?
- Reprinted with permission from Daniel Pocock
- When you give money to Debian, where does it go?
- Reprinted with permission from Daniel Pocock
- How do teams work in Debian?
- Reprinted with permission from Daniel Pocock
- Joint Authors & Debian Family Legitimate Interests
- Reprinted with permission from Daniel Pocock
- Bad faith: Debian logo and theme use authorized
- Reprinted with permission from Daniel Pocock
- Links 17/04/2024: TikTok Killing Youth, More Layoff Rounds
- Links for the day
- Jack Wallen Has Been Assigned by ZDNet to Write Fake (Sponsored) 'Reviews'
- Wallen is selling out. Shilling for the corporations, not the community.
- Links 17/04/2024: SAP, Kwalee, and Take-Two Layoffs
- Links for the day
- IRC Proceedings: Tuesday, April 16, 2024
- IRC logs for Tuesday, April 16, 2024
- Over at Tux Machines...
- GNU/Linux news for the past day
- Inclusion of Dissent and Diversity of Views (Opinions, Interpretations, Scenarios)
- Stand for freedom of expression as much as you insist on software freedom
- Examining Code of Conduct violations
- Reprinted with permission from the Free Software Fellowship
- Ruben Schade's Story Shows the Toxicity of Social Control Media, Not GNU/Linux
- The issue here is Social Control Media [sic], which unlike the media rewards people for brigading otherwise OK or reasonable people
- Upgrading IRCd
- We use the latest Debian BTW
- The Free Software Community is Under Attack (Waged Mostly by Lawyers, Not Developers)
- Licensing and legalese may seem "boring" or "complicated" (depending on where one stands w.r.t. development), but it matters a great deal
- Jonathan Cohen, Charles Fussell & Debian embezzlement
- Reprinted with permission from disguised.work
- Grasping at Straws in IBM (Red Hat Layoff Rumours in 2024)
- researching rumours around Red Hat layoffs
- GNU/Linux Continues to Get More Prevalent Worldwide (Also on the Desktop)
- Desktops (or laptops) aren't everything, but...
- Who is a real Debian Developer?
- Reprinted with permission from Daniel Pocock
- Links 16/04/2024: Many More Layoffs, Broadcom/VMware Probed (Antitrust)
- Links for the day
- Links 16/04/2024: Second Sunday After Easter and "Re-inventing the Wheel"
- Links for the day
- Upcoming Themes and Articles in Techrights
- we expect to have already caught up with most of the administrivia and hopefully we'll be back to the prior pace some time later this week
- Links 16/04/2024: Levente "anthraxx" Polyák as Arch Linux 2024 Leader, openSUSE Leap Micro 6 Now Alpha, Facebook Blocking News
- Links for the day
- Where is the copyright notice and license for Debian GNU/Linux itself?
- Reprinted with permission from Daniel Pocock
- Halász Dávid & IBM Red Hat, OSCAL, Albania dating
- Reprinted with permission from the Free Software Fellowship
- Apology & Correction: Daniele Scasciafratte & Mozilla, OSCAL, Albania dating
- Reprinted with permission from the Free Software Fellowship
- Next Week Marks a Year Since Red Hat Mass Layoffs, Another Round Would be "Consistent With Other Layoffs at IBM."
- "From anon: Global D&I team has been cut in half."
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Monday, April 15, 2024
- IRC logs for Monday, April 15, 2024