Win 7 UAC問(wèn)題擴(kuò)大 - 可被隨意關(guān)閉

Win7之家（ m.airtaxifl.com）：Win 7 UAC問(wèn)題擴(kuò)大 - 可被隨意關(guān)閉

 還記得Windows 7 Beta中的UAC現(xiàn)Bug么？那是國(guó)外博客作者LongZheng發(fā)現(xiàn)的第一個(gè)UAC bug。惡意軟件可以在默認(rèn)UAC設(shè)置下通行無(wú)阻。而就在今天，LongZheng再次發(fā)表文章稱，UAC的第二個(gè)Bug也已經(jīng)被發(fā)現(xiàn)。這次的問(wèn)題更嚴(yán)重。

LongZheng稱這次惡意軟件可以將自己的權(quán)限提升至超級(jí)管理員權(quán)限，而不會(huì)觸發(fā)UAC，也不用關(guān)閉UAC。而事實(shí)上，惡意軟件甚至可以悄無(wú)聲息地關(guān)閉UAC。這對(duì)微軟而言，可不是個(gè)好消息，對(duì)當(dāng)前的Windows 7 Beta用戶也不是什么好新聞，至少已經(jīng)存在安全風(fēng)險(xiǎn)了。對(duì)此，他建議所有Windows 7 Beta用戶將UAC級(jí)別設(shè)置為高以減少安全風(fēng)險(xiǎn)。

此前微軟曾宣稱這不是Windows 7的Bug，就是這樣設(shè)計(jì)的。而問(wèn)題嚴(yán)重到這個(gè)地步，估計(jì)微軟會(huì)在后續(xù)放出補(bǔ)丁。

附部分原文：

Long Zheng of I Started Something has uncovered a flaw in Windows 7's UAC that means malware can elevate itself to administrator privileges. This news comes after a previously discovered flaw in Windows 7's new tiered UAC system that meant malware can disable UAC silently.

Zheng has stated "a second UAC security flaw in the Windows 7 beta's default security configuration allows a malicious application to autonomously elevate themselves to full administrative privileges without UAC prompts or turning UAC off", which is bad news for Microsoft. It is also bad news for all the people currently running the Windows 7 beta, leaving them with a security risk. Zheng recommends that, if you're using Windows 7 currently, set your UAC to High to reduce any potential problems. For more information on how to set the UAC level please read our UAC overview.
...