Debunking the "Blue Pill" Vulnerability Theory

The fact that this exploit even occurred is alarming. But exactly who should it alarm? Windows system administrators? Those thinking of running Windows Vista x64? Or all administrators? I believe it's something we all should be concerned with.

A fundamental tenet of computer security is that a user with administrative powers can do a lot to a machine -- including format an entire hard drive. This tenet is why privilege escalation attacks are so problematic. But in this particular "blue pill" exploit, there was no privilege exploit. And the chances of someone obtaining remote access to a machine, using administrative privileges, and being able to successfully pull off this exploit are very slim. In fact, no one has done so yet. Debunking the "Blue Pill" Vulnerability Theory

Linked by shanmuga Wednesday, 11th October 2006 3:22AM