Win 7 UAC問題擴大 - 可被隨意關(guān)閉

2009/2/4 16:25:54    編輯:Windows7之家 - Mary Jane     字體:【

Win7之家afsion.com.cn):Win 7 UAC問題擴大 - 可被隨意關(guān)閉

 還記得Windows 7 Beta中的UAC現(xiàn)Bug么?那是國外博客作者LongZheng發(fā)現(xiàn)的第一個UAC bug。惡意軟件可以在默認UAC設(shè)置下通行無阻。而就在今天,LongZheng再次發(fā)表文章稱,UAC的第二個Bug也已經(jīng)被發(fā)現(xiàn)。這次的問題更嚴重。

LongZheng稱這次惡意軟件可以將自己的權(quán)限提升至超級管理員權(quán)限,而不會觸發(fā)UAC,也不用關(guān)閉UAC。而事實上,惡意軟件甚至可以悄無聲息地關(guān)閉UAC。這對微軟而言,可不是個好消息,對當前的Windows 7 Beta用戶也不是什么好新聞,至少已經(jīng)存在安全風險了。對此,他建議所有Windows 7 Beta用戶將UAC級別設(shè)置為高以減少安全風險。

此前微軟曾宣稱這不是Windows 7的Bug,就是這樣設(shè)計的。而問題嚴重到這個地步,估計微軟會在后續(xù)放出補丁。



附部分原文:

Long Zheng of I Started Something has uncovered a flaw in Windows 7's UAC that means malware can elevate itself to administrator privileges. This news comes after a previously discovered flaw in Windows 7's new tiered UAC system that meant malware can disable UAC silently.

Zheng has stated "a second UAC security flaw in the Windows 7 beta's default security configuration allows a malicious application to autonomously elevate themselves to full administrative privileges without UAC prompts or turning UAC off", which is bad news for Microsoft. It is also bad news for all the people currently running the Windows 7 beta, leaving them with a security risk. Zheng recommends that, if you're using Windows 7 currently, set your UAC to High to reduce any potential problems. For more information on how to set the UAC level please read our UAC overview.
...