Windows Vista Security News

Windows Vista Information - Security, news, articles, tips and more.

• Home
• Contact

Latest Entries

• Microsoft releases faster Desktop Search 4.0
• Vista users keen on SP1, but XP SP3 not so much
• Windows 7 Details In October, Microsoft Says
• Microsofts plans for post-Windows OS revealed
• Most Vista Business Buyers Downgrade To Windows XP

Analysis of the Windows Vista Security Model

Wednesday, August 9th, 2006

This paper provides an in-depth technical assessment of the security improvements implemented in Windows Vista, focusing primarily on the areas of User Account Protection and User Interface Privilege Isolation. This paper discusses these features and touches on several of their shortcomings. It then demonstrates how it is possible to combine these attacks to gain full control over the machine from low integrity, low privilege process.

Windows Vista is a radical departure from prior versions of the Windows operating system. With its introduction, enhancements have been made to virtually all aspects of the Windows security model. These changes should decrease the ease by which the operating system can be compromised.

In this research, Symantec researchers evaluated the security of the Windows Vista February 2006 CTP build. During this research we discovered a number of implementation flaws that continued to allow a full machine compromise to occur. By exploiting these flaws, a low privilege, low integrity level process can bypass User Account Protection, and ultimately execute code at a high privilege, high integrity level. Analysis of the Windows Vista Security Model - IT Observer

Popular Posts

• A look inside Windows Vista
• Windows Vista: more than just a pretty face
• Linux vs. Vista: How Does Security Stack Up?
• Microsoft Releases Vista SP1 Admits to Glitch
• Windows Vista Take on Least Privilege
• Most security tools not quite ready for Vista
• Microsoft CEO Sees Less Piracy With Vista
• Run Vista for 120 Days without Activation Using SLMGR Rearm Function
• Crack Available to Install Windows Vista with Only 256MB RAM
• Vista SP1: Create a recovery disc
• Windows Vista: Bluetooth
• Windows Vista Custom PC Design
• From root kit to boot kit: Vista code signing compromised
• Windows Vista RC2 Preview, Installation, Benchmarking
• Twist in the Windows Vista 2099 Activation Crack
• Vista Home Basic: of lemons and lemonade
• Vista Lockdown: McAfee Learns the Meaning of Proprietary
• The Vista OS for Business: A Primer
• Rivals skirmish with Microsoft over Vista security
• Redmond’s One Big Vista Mistake?
• DirectX 10 hardware appears with nary a native game in sight
• Microsoft stands firm on PatchGuard
• Microsoft Cites Top 10 Reasons Partners Should Pitch Vista
• Share the Vista vision, Microsoft tells security rivals
• TCP/IP Networking in Windows Vista
• Why Vista is defective by design
• The Sad State of Vista Drivers
• NVIDIA owners threaten class action over Vista drivers
• Managing Windows Vista Group Policy (Part 3)
• Surprises Inside Microsoft Vistas EULA

Comments are closed.

Please read our Disclaimer

Search

Your search engine brought you here? please use the same keyword in the Google box below to find what you are looking for.

Web This Site

© Windows Vista Security News 2006 - 2008 All Rights Reserved
Site Map | About | Disclaimer | Privacy Policy

Design by Andreas Viklund | Ported by Matteo Turchetto