Defense in depth — the Microsoft way (part 32): yet another (trivial) UAC bypass resp. privilege escalation

September 7, 2015 007admin Leave a comment

Posted by Stefan Kanthak on Sep 07

Hi @ll,

in <http://seclists.org/fulldisclosure/2013/Sep/132> I showed an
elaborated way for privilege elevation using IExpress (and other
self-extracting) installers containing *.MSI or *.MSP which works
“in certain situations”.

Microsoft addressed this vulnerability with
<https://technet.microsoft.com/library/security/ms14-049.aspx>

In <http://seclists.org/fulldisclosure/2013/Oct/5> I showed an
indirect way for…

007 Software

Defense in depth — the Microsoft way (part 32): yet another (trivial) UAC bypass resp. privilege escalation

Leave a Reply Cancel reply

Software and Security Information