Sign in / up

back to article Microsoft's 'Application Verifier' bug-finder is easily pwnable

“Don't create undocumented features” should be tattooed in the corner of every developer's eye: there's one in the Microsoft Application Verifier Provider that provides attack vectors on everything Windows since XP. Cybellum, which discovered the feature, has focussed on attacking anti-virus first, but says its DoubleAgent …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. Anonymous Coward
    Anonymous Coward

    Who could possibly gain

    from this?

    1 1 Reply
  2. Anonymous Coward
    Trollface

    Looks to me Microsoft needs a verifier for it's verifier...

    It's verifiers all the way down...

    6 0 Reply
  3. Steve the Cynic

    But but but...

    You've been able to configure DLLs to be autoinjected for *ages* and *ages* and *ages*. It might not be important because writing to the relevant part of the registry requires (or should require) elevated privileges, but is it *hard* to get those privileges? "Oh, look, another UAC prompt stopping me looking at this porn. Where's the OK button?"

    4 0 Reply
  4. Anonymous Coward
    Anonymous Coward

    Game Over

    The attacker needs admin access to the target machine to perpetuate an attack. Maybe Cybellum should have called it "Double Game Over". The Reg could call this article "Cybellum makes headlines compromising an already compromised machine".

    0 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like