'Nightmare' kernel bug lets attackers evade Windows UAC security

[Allan]

Microsoft is investigating reports of an unpatched vulnerability in the Windows kernel that could be used by attackers to sidestep an important operating system security measure.
 
 http://bit.ly/fuKbbh             

[BC_Programmer]

Hackers cannot use the exploit to remotely compromise a PC, however, as it requires local access, a fact that Microsoft stressed. "Because this is a local elevation-of-privilege issue, it requires attackers to be already able to execute code on a targeted machine," said Bryant.

I think that's pretty important to consider, since the malicious code has to get to your machine first, and be executed.

[Allan]

Agreed. Still.......

[Veltas]

Does this mean people can infect your kernel without you noticing?

Not like that's never happened before...

EDIT:

"On its own, this bug does not allow remote code execution, but does enable non-administrator accounts to execute code as if they were an administrator"

Hmmm, sounds worse now...

[BC_Programmer]

Agreed. Still.......

Of course, it's still a vulnerability. But at least it's not the "OMG anybody can Blue screen my PC" type of thing with early versions of windows 95 or the various older "send a few magic packets to a PC and take it over via remote desktop" bugs in winXP and 2K.

Does this mean people can infect your kernel without you noticing?

No.

"On its own, this bug does not allow remote code execution, but does enable non-administrator accounts to execute code as if they were an administrator"

Hmmm, sounds worse now...

depends on the situation. I don't know about anybody else but I'm very careful about where I download executables from. A good percentage of people run with UAC disabled to begin with which I believe make this issue moot for them.

[Allan]

A good percentage of people run with UAC disabled to begin with which I believe make this issue moot for them.

Yep. And that makes no sense at all - especially with the availability of "silent mode". Huge thread on UAC (been going on for years) at another support site.

[Veltas]

Sorry but stuff like this is always around, if you're that worried just download linux or something.

I'll agree with BC that just being careful about your sources is key to not getting this stuff.  Whenever I have security problems it's because I decided to download from a source I wouldn't usually trust but felt desperate enough to do so.. and suffered for it.

[BC_Programmer]

Yep. And that makes no sense at all - especially with the availability of "silent mode".

You mean it makes no sense to run without UAC, not that UAC makes no sense, correct?

if you're that worried just download linux or something.

Linux is not any more secure then windows. This is a common fallacy. Both systems need to be properly configured to be secure.

[Allan]

You mean it makes no sense to run without UAC, not that UAC makes no sense, correct?

Yes. There is no reason not to use it. If you find it too intrusive (as I do) then just run it in quiet mode / silent mode - which is what I do on all systems. And there's even a little utility (http://www.tweak-uac.com/home/) that makes switching modes a snap for anyone.