1. Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Windows Vista has large security hole in UAC

Discussion in 'News' started by zekrahminator, Feb 14, 2007.

  1. zekrahminator

    zekrahminator McLovin

    Joined:
    Jan 29, 2006
    Messages:
    9,066 (2.12/day)
    Thanks Received:
    321
    Location:
    My house.
    When Microsoft shipped Windows Vista, they bragged about how secure it was, showing off the User Access Control (UAC) feature. UAC is something that asks a user if they really want it to run a program before simply running it (previous versions of Windows would simply run the program). "Hackette" Joanna Rutkowska found a disturbing loophole through UAC. Apparently, UAC works by running everything as an administrator, and simply asking for confirmation before executing a program. So if something like a game installer triggered off UAC, and a user hit "allow", the program could theoretically be allowed to run a bunch of other things that would individually require administrator privileges. When dealing with things like simple registry changes this is no problem, but when malware is piggybacking in an installer....this effectively ushers in the next generation of Trojan horse viruses. Microsoft does not consider this a serious threat, and thinks of it more like a minor weakness, which is the result of a "design choice".

    Source: The Inquirer
     
    10 Year Member at TPU
  2. EastCoasthandle

    EastCoasthandle New Member

    Joined:
    Apr 21, 2005
    Messages:
    6,885 (1.51/day)
    Thanks Received:
    1,509
    Well wouldn't you know...there really is no such thing as a secure os after all. Oh wait, don't believe it just because it comes from the inquirer.;)
     
    10 Year Member at TPU
  3. BXtreme

    BXtreme New Member

    Joined:
    Feb 5, 2007
    Messages:
    1,324 (0.34/day)
    Thanks Received:
    4
    Location:
    Kolkata, India
    when ppl have Vista they should have a gd antivirus with them, so to get rid of inserted viruses in game packages or software ones, and if the antivirus doesn't get note of the virus, is the user also dumb enough to allow an unknown file ??? This is a minor threat imo also, no one should care unless they don't have proper security in their copy of Windows Vista.
     
    10 Year Member at TPU
  4. EastCoasthandle

    EastCoasthandle New Member

    Joined:
    Apr 21, 2005
    Messages:
    6,885 (1.51/day)
    Thanks Received:
    1,509
    Dude, you need to re-read that again.
     
    10 Year Member at TPU
  5. BXtreme

    BXtreme New Member

    Joined:
    Feb 5, 2007
    Messages:
    1,324 (0.34/day)
    Thanks Received:
    4
    Location:
    Kolkata, India
    then what for is an antivirus ???
     
    10 Year Member at TPU
  6. EastCoasthandle

    EastCoasthandle New Member

    Joined:
    Apr 21, 2005
    Messages:
    6,885 (1.51/day)
    Thanks Received:
    1,509
    All antivirus will trigger UAC while the viruses, malware, etc don't.
     
    10 Year Member at TPU
  7. BXtreme

    BXtreme New Member

    Joined:
    Feb 5, 2007
    Messages:
    1,324 (0.34/day)
    Thanks Received:
    4
    Location:
    Kolkata, India
    well, that calls for smarter antivirus, maybe :)
     
    10 Year Member at TPU
  8. EastCoasthandle

    EastCoasthandle New Member

    Joined:
    Apr 21, 2005
    Messages:
    6,885 (1.51/day)
    Thanks Received:
    1,509
    Actually you need a 2nd tier UAC that would catch this. In other words you would invest in a good firewall program. In all UAC is just a very "lite" version of an annoying, useless firewall IMO.
     
    10 Year Member at TPU
  9. BXtreme

    BXtreme New Member

    Joined:
    Feb 5, 2007
    Messages:
    1,324 (0.34/day)
    Thanks Received:
    4
    Location:
    Kolkata, India
    ya agreed lol, but users also need to be more cautious ya know :D, see my thread "Attention Vista users" something about new vista viruses are comin'.
     
    10 Year Member at TPU
  10. WarEagleAU

    WarEagleAU Bird of Prey

    Joined:
    Jul 9, 2006
    Messages:
    10,809 (2.62/day)
    Thanks Received:
    548
    Location:
    Gurley, AL
    More and more reasons why Vista is bad news ATM.
     
    10 Year Member at TPU
  11. Completely Bonkers New Member

    Joined:
    Feb 6, 2007
    Messages:
    2,576 (0.66/day)
    Thanks Received:
    517
    What is truely bad is the passive response from MS. I would, as a potential customer of Vista, be much more confident in them and the OS if they said "this is an interesting possibility that wasn't anticipated: installation files with both a legitimate purpose but also malicious content. Our primary concern is security, and as such we will investigate how to modify the installer to restrict registry "auto run" to be validated ONLY AFTER a full virusscan of installed files has been completed"

    This would be a change in how the registry works... quite a task... but actually a very smart move.
     
    10 Year Member at TPU
  12. tigger

    tigger I'm the only one

    Joined:
    Mar 20, 2006
    Messages:
    10,476 (2.48/day)
    Thanks Received:
    1,695
    uac is really irritating,microsoft dont tell people that.i like most vista users have probably turned off the uac.
     
    10 Year Member at TPU
  13. mullered07

    mullered07 New Member

    Joined:
    Jan 28, 2007
    Messages:
    2,646 (0.68/day)
    Thanks Received:
    204
    Location:
    UK
    i think a lot of power users and people off here this isnt a problem at all, a lot of us are clued up enough to make our os secure ourselves, however the "average joe" is not so clever, ive fixed countless pc's off friends and family and as soon as it boots the things is clogged to shit trying to load up all kinds of crap thats uneccessary (imo software developers need to take responsibility for this and learn NOT to program there software to automatically startup, if the user is running there software is that not enough? )

    and the amont of times ive had someones pc to fix and thought id start up internet explorer and theres like 3-4 different toolbars, one under the other (taking up half the bloody screen) (not too mention being able to browse all the naughty sites they have visited :laugh: clean your goddam browsers people or dont vist pr0n sites :p)

    imo windows should make a dummed down version :laugh: for 50% home users (ie: preinstalled with a decent firewall, av, spyware and warn the user not to install all the shit there going to because its "free" :slap: )lol cause its people like them who give the hackers the satisfaction they crave, i never have a problem with virii/spyware/trojans etc cause i know what im doing
     
    10 Year Member at TPU
  14. zekrahminator

    zekrahminator McLovin

    Joined:
    Jan 29, 2006
    Messages:
    9,066 (2.12/day)
    Thanks Received:
    321
    Location:
    My house.
    I earn $20 a house-call, and that is almost exactly like what I have to deal with every visit. Have you tried putting your clients on limited accounts (through Windows)? I've found it keeps a lot of crap off, especially when all my clients want to do is access teh interweb (firefox, disabled access to IE). And I completely agree on how software developers need to keep their crap from starting with Windows. Stores are selling PC's with SEVENTY PROCESSES :shadeshu . I'm currently running 31 processes and have just about everything I need on the PC on right now (WMP, AIM, FF, AV...).

    Oh yeah and I don't use firewalls, common sense and a router do everything a software firewall would do :).
     
    10 Year Member at TPU
  15. Alec§taar New Member

    Joined:
    May 15, 2006
    Messages:
    4,677 (1.12/day)
    Thanks Received:
    94
    Location:
    Someone who's going to find NewTekie1 and teach hi
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer

    Point-blank: When you assign that registry pathway SYSTEM users, w/ FULL CONTROL rights, OR Administrator users, w/ FULL CONTROL rights?

    She's right - in that even 'safe installers' CAN/COULD deliver ANYTHING it wants, & I don't care if you use .msi installers, installshield, or what...

    (& I'd wager it's the exact same in VISTA, that same pathway exists, w/ same user rights assigned to it)

    Same w/ your filesystems, they can write anything they'd like.

    Add to that, the fact they have an internal 'stamp' (probably in the Win32 Portable Executable Header) which marks them as running as Admin users, by "association"? Well, you get, what you get. Installers have to change as well, imo, yet again also.

    APK

    P.S.=> UAC doesn't do a thing to stall that apparently, how can it? Check you registry permissions there, you'll see what I mean...

    http://theinvisiblethings.blogspot.com/2007/02/running-vista-every-day.html

    "One thing that I found particularly annoying though, is that Vista automatically assumes that all setup programs (application installers) should be run with administrator privileges. So, when you try to run such a program, you get a UAC prompt and you have only two choices: either to agree to run this application as administrator or to disallow running it at all. That means that if you downloaded some freeware Tetris game, you will have to run its installer as administrator, giving it not only full access to all your file system and registry, but also allowing e.g. to load kernel drivers! Why Tetris installer should be allowed to load kernel drivers?"

    VISTA security, nice as it is & it IS an improvement on its forebears in many ways, does have a "hole" there, you either install as administrator user, (OR don't install your program, yea, right: IF YOU WANT TO USE IT, you'll install it, the point of running one IS that) & the installer technically CAN do what ADMIN users can @ that point... where you the user can't for many things!)

    There is currently, NO SANDBOX FOR INSTALLERS in other words, & they too, need to change it seems to fit the VISTA security model... apk
     
    Last edited: Feb 15, 2007
    10 Year Member at TPU
  16. EastCoasthandle

    EastCoasthandle New Member

    Joined:
    Apr 21, 2005
    Messages:
    6,885 (1.51/day)
    Thanks Received:
    1,509
    Wait a minute, Vista is sold on the premise that it's a safer OS! This is not about comprise nor about how you navigate the internet (laughable at best). If you are treating Vista like XP why even buy it to begin with?
     
    10 Year Member at TPU

Currently Active Users Viewing This Thread: 1 (0 members and 1 guest)