New to Windows 7 is the ability to fine tune User Account Control (UAC), the infamously chatty feature introduced in Windows Vista to improve security.
As the Windows operating system cannot differentiate between a user clicking a button and a program clicking a button, UAC was initially implemented to always prompt the user via a dialog shown in the Secure Desktop, similar to the login screen.
Windows 7, however, now ships with UAC configured to hide prompts when users change Windows settings. While this mode still ensures normal applications can’t overwrite your entire registry hive, Microsoft made a boo-boo in allowing users to change any Windows setting without any prompts. Yes, you can even change UAC settings, allow applications free reign in elevated mode (after the required restart).
I’m not alone in scratching my head here – According to an envelope of Post-It notes received by Long Zheng, there have been multiple submissions of this very issue on Microsoft’s beta portal, Connect. Guess what happened. They were all closed — “by design”.
To quickly demonstrate how easy it is to automate the disabling of UAC, I wrote some sloppy VBScript code (rename to .vbs), the kind you see in malware on P2P networks, using a combination of the SendKeys, Sleep and Run methods to automate the remote control of the UAC control panel applet and reboot of the system. A more enterprising piece of malware could, of course, move the UAC dialog off-screen, and/or install malware into the startup folder.
An obvious fix for this “issue” would be to force the adjustment of UAC parameters to be confirmed by a human. Until Microsoft addresses this “issue”, you can set UAC to its highest mode to kill any concerns you may have… but you’re not using this in a production environment anyway – right?

Pingback: Sacrificing security for usability: UAC security flaw in Windows 7 beta (with proof of concept code) - istartedsomething
Pingback: Удобство в угоду безопасности: уязвимость в бета-версии Windows 7 | Блог о Windows 7
Pingback: Microsoft confirm, UAC security flaw in Windows 7
Pingback: El UAC de Windows 7 te la puede jugar
Pingback: » UAC security flaw in Windows 7 beta | The Toybox | ZDNet.com
Pingback: Sacrificing security for usability: UAC security flaw in Windows 7 beta (with proof of concept code) | imagZstudio.com
Pingback: Windows 7 - Vunerabilidade encontrada na UAC do sistema | Blog do The Best
Pingback: Christopher’s Blog » Windows 7 Bug Remains Unfixed… (URGENT)
Pingback: Cualquier malware puede apagar el Control de Cuentas de Usuario (UAC) de Windows 7 » SoftwareZone : Blog sobre Software con tutoriales de ayuda y noticias
Pingback: Un pequeño e ingenuo fallo de seguridad en el UAC de Windows 7 | SwordFishCode
Pingback: Huge Security Flaw in Windows 7 UAC | Windows 7 Center
Pingback: Die Windows 7 UAC Sicherheitslücke « 11k2
Pingback: Updated: Windows 7’s UAC is now insecure ‘by design’ | 226bw Tech News Blog
Pingback: » Blog Archive » חלונות 7 כמעט כאן. גם בעיות האבטחה.
Pingback: Huge Security Flaw in Windows 7 UAC | IT Knowledge Hub
Pingback: BattleIT » Artikklid » Windows 7 rajab teed pahavarale
Pingback: Boycott Novell » Vista 7: Broken Apart Before Arrival
Pingback: Windows 7: Sicherheitslücke in Beta-Version « Computerhilfe u. Info Blog
Pingback: Windows 7 Sicherheitslücke entdeckt | Adrian Sauer
Pingback: Sicherheitslücke in Windows 7 Beta | Pierre Markuse
Pingback: Windows 7 UAC Sicherheitslücke | TechFieber | Hot Gadgets. Smart TechNews.
Pingback: Security Cadets » WinPatrol v16 Monitors Changes to UAC
Pingback: Usabilidad contra Seguridad: ¿Qué hacemos con el UAC en Windows 7? «
Pingback: Stop Copying Mac » Blog Archive » Sacrificing security for usability: UAC security flaw in Windows 7 beta (with proof of concept code)
Pingback: Data Security Podcast Episode 38 - Feb 2 2009 « Data Security Podcast
Pingback: WinPatrol v16 Monitors Changes to UAC « BFC Blog
Pingback: IT-Blogger » Windows 7 - Sicherheitslücke “by Design”
Pingback: Jeromecold’s Blog » Blog Archive » Windows 7, une sécurité à revoir!
Pingback: Malware can turn off UAC in Windows 7 Beta version « SecTech
Pingback: Malware puede modificar la UAC | Windows Seven 7
Pingback: TECHGEEK.com.au : Blogger finds security flaw in Windows 7 UAC
Pingback: faq-o-matic.net » Windows 7 Beta: Sicherheitsprobleme mit UAC
Pingback: Descoberta falha no UAC do Windows 7 (Micro$oft chama de “feature”)
Pingback: Windows 7 (Se7en), la faille UAC qui n'en est pas une ? | NeoSting Press
Pingback: » Is this what they call a feature? | IT Security | TechRepublic.com
Pingback: Usabilidad contra Seguridad: ¿Qué hacemos con el UAC en Windows 7? : Lo Mejor de la Web
Pingback: Latest News Items Covering Windows 7 » Tips Dr.com
Pingback: Usabilidad contra Seguridad: ¿Qué hacemos con el UAC en Windows 7? | Shadow Security
Pingback: AeroXperience » Blog Archive » UAC in Windows 7: Exponential Silent Attack Vector Multiplier
Pingback: Sicherheitsleck in der UAC von Windows 7 gestopft im Windowsblog | Am Puls der Microsoft Betriebssysteme
Pingback: Microsoft agrees to make Windows 7’s UAC more secure
Pingback: Can you have functionality and security
Pingback: Microsoft soluciona el problema de seguridad del UAC en Windows 7 | Windows Seven 7
Pingback: 4sysops - Windows 7 UAC vulnerabilities
Pingback: Criminosos usam falsa multa em parabrisas para disseminar vírus « Agência Vibe
Pingback: Security Summary: 09-02-2009 | ContraRISK
Pingback: Windows 7: die neue Benutzerkontensteuerung | Windows Vista Blog
Pingback: Microsoft soluciona el problema de seguridad del UAC en Windows 7 « Miguelthepooh’s Blog
Pingback: Tobbis Blog » UAC unter Windows 7 deaktivieren
Pingback: Sacrificing security for usability: UAC security flaw in Windows 7 beta (with proof of concept code) « Window7s
Pingback: Sacrificing security for usability: UAC security flaw in Windows 7 beta (with proof of concept code) | Window7s
Pingback: Microsoft comenta mudanças presentes no Windows 7 RC — WinAjuda — Diga adeus à sua tecla F1
Pingback: Microsoft comenta mudanças presentes no Windows 7 RC « Live DeskMod’s
Pingback: Malware puede modificar la UAC « Windows 7 Blog
Pingback: Personal Blog — John Keyes – Linkeyes 1st February 2009
Pingback: Karun AB » Windows 7: A second look
Pingback: At least 62 gaping security holes in Windows 7 Release Candidate « Reformed Musings
Pingback: matt’s blog » Blog Archive » Windows 7 UAC — Door is Wide Open
Pingback: UAC being turned off every time Windows 7 starts (once a day) | Ask From Octopus