Comment on Windows User Account Control Bypassed Using Character Editor to Escalate Privileges
ramble81@lemmy.zip 2 days agoEh, I kinda see that point. I never considered it a boundary anyway since it didn’t require any additional authentication or authorization. It always felt more like a “here be dragons” warning for people who may not know what their doing, but if you think about it your user context never changes.
Nighed@feddit.uk 2 days ago
It has some level of additional security I think? some remote access apps have issues with them.
ChaosMonkey@lemmy.dbzer0.com 2 days ago
Yes, by deault windows launches UAC prompts in the supposedly isolated “secure desktop” instead of the classicsl “interactive user desktop”
clb92@feddit.dk 2 days ago
You can also up your UAC security level, so it requires your password, like most Linux distros do. This can (disregarding bypasses like this one) thwart keystroke injection attacks like that from a USB Rubber Ducky.