Leo Davidson released a proof-of-concept showcasing Windows 7 User Account Control feature flaw elevating a command prompt window using the whitelisted explorer.exe process. As of now, Microsoft has failed to fix the flaw, but they’re taking it a step further by blocking the exploit in Microsoft Security Essentials, as HackTool.Win32/Welevate.A and HackTool.Win64/Welevate.A (depending on architecture). However, Leo noted that Windows Defender in Vista did not detect this exploit, and Bryant confirmed that the same is true for Windows 7 (where the trick would actually work), so this seems to be exclusive to Microsoft Security Essentials.
Posted on Aug 2, 2009, 4:52 am, UTC
Leave a Reply
One Response to “Microsoft Security Essentials lists Windows 7 UAC hack as malware”
Warning: call_user_func(custom_comments) [function.call-user-func]: First argument is expected to be a valid callback in /nfs/c05/h04/mnt/46425/domains/ditii.com/html/blog/wp-includes/comment-template.php on line 1334
Recommend this story
Email Newsletter
Missing out on the latest diTii.com news? Enter your email below to receive future announcements direct to your inbox. An email confirmation will be sent before your subscription is activated - please check your spam folder if you don't receive this.
About the AuthorDG