Vuln Dev
Windows Vista winsat.exe Integer Overflow Mar 28 2008 08:08PM
jose eyeos org (1 replies)
Re: Windows Vista winsat.exe Integer Overflow Mar 29 2008 03:03AM
Steve Shockley (steve shockley shockley net) (1 replies)
Re: Windows Vista winsat.exe Integer Overflow Mar 31 2008 03:52AM
Valdis Kletnieks vt edu (1 replies)
On Fri, 28 Mar 2008 23:03:55 EDT, Steve Shockley said:

> You'd still have to convince the user to bypass UAC when he wasn't
> expecting a UAC prompt, in addition to getting them to run it in the
> first place.

Experience has proved that neither of these should be all that difficult
for an attacker - an incredibly large percentage of users will go ahead and
run a .exe, clicking through multiple security warnings, if it promises to
do something interesting (usually having to do with somebody famous wearing
too little clothing while misbehaving...)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001

iD8DBQFH8F/5cC3lWbTT17ARAs7dAKDuhDZgkAm/LFAvMKyoUDwRL5XNvQCdFwRl
IYUuZkbLw4yFS7vUx8UbXRY=
=8dme
-----END PGP SIGNATURE-----

[ reply ]
RE: Windows Vista winsat.exe Integer Overflow Apr 02 2008 08:39PM
Thor (Hammer of God) (thor hammerofgod com) (1 replies)
Re: Windows Vista winsat.exe Integer Overflow Apr 03 2008 02:33AM
Valdis Kletnieks vt edu


 

Privacy Statement
Copyright 2010, SecurityFocus