快捷搜索:

您的位置:澳门新葡4473网站 > 热门贴子 > Win 7 UAC问题扩大 - 可被随意关闭 - Windows7之家,

Win 7 UAC问题扩大 - 可被随意关闭 - Windows7之家,

发布时间:2019-11-22 16:58编辑:热门贴子浏览(87)

    Win7之家:安全公司称Win 7 Beta可能存在安全问题

    Win7之家:Win 7 UAC问题扩大 - 可被随意关闭

    一家安全软件公司近期向通过BT网站下载Windows 7 Beta的用户发出了警告,称该版本中包含一个严重漏洞,很有可能导致计算机感染恶意软件。

    还记得Windows 7 Beta中的UAC现Bug么?那是国外博客作者LongZheng发现的第一个UAC bug。恶意软件可以在默认UAC设置下通行无阻。而就在今天,LongZheng再次发表文章称,UAC的第二个Bug也已经被发现。这次的问题更严重。LongZheng称这次恶意软件可以将自己的权限提升至超级管理员权限,而不会触发UAC,也不用关闭UAC。而事实上,恶意软件甚至可以悄无声息地关闭UAC。这对微软而言,可不是个好消息,对当前的Windows 7 Beta用户也不是什么好新闻,至少已经存在安全风险了。对此,他建议所有Windows 7 Beta用户将UAC级别设置为高以减少安全风险。此前微软曾宣称这不是Windows 7的Bug,就是这样设计的。而问题严重到这个地步,估计微软会在后续放出补丁。

    该公司职员Fortify’s Rob Rachwald 称“该版本的问题在于没有任何方法可以保证在发布到网上之前,黑客没有在2.44G大的文件内写入恶意软件代码。”

    附部分原文:Long Zheng of I Started Something has uncovered a flaw in Windows 7's UAC that means malware can elevate itself to administrator privileges. This news comes after a previously discovered flaw in Windows 7's new tiered UAC system that meant malware can disable UAC silently.Zheng has stated "a second UAC security flaw in the Windows 7 beta's default security configuration allows a malicious application to autonomously elevate themselves to full administrative privileges without UAC prompts or turning UAC off", which is bad news for Microsoft. It is also bad news for all the people currently running the Windows 7 beta, leaving them with a security risk. Zheng recommends that, if you're using Windows 7 currently, set your UAC to High to reduce any potential problems. For more information on how to set the UAC level please read our UAC overview....

    改公司还指出在Windows 7上市前,很难有效扫描用户计算机内是否有病毒,也很难保证用户使用的安全软件可以在Windows 7上真正有效工作。甚至于如果确实有黑客修改过此版本的话,他们很有可能会通过Windows关闭这些安全软件。

    好在目前为止,还没有任何用户报告称发现了安全问题。但不管怎样,Fortify’s Rob Rachwald 的建议还是有道理的。

    A security software firm has warned against downloading the pirated copies of the Windows 7 beta that are available through torrent sites. It says there’s a serious risk of copies being infected with malware.

    Fortify’s Rob Rachwald says “The problem with this version is that there’s absolutely no way of authenticating that the early build hasn’t been tampered with by a hacker. They may have coded all sorts of malware into the 2.44 gigabytes file.”

    The firm also points out that it’s particularly difficult to check a pirated operating system for viruses when it isn’t yet on the market. It’s not the same as downloading a program and running it in XP or Vista. By definition there’s no guarantee that your usual virus scanner will actually work when you come to run the pirated Windows 7. And if anyone has tampered with this copy of the operating system, chances are they’ve also disabled the security measures built into Windows itself....

    本文由澳门新葡4473网站发布于热门贴子,转载请注明出处:Win 7 UAC问题扩大 - 可被随意关闭 - Windows7之家,

    关键词: