Microsoft Insists Windows 7 UAC Flaw Is Not a Vulnerability

Yesterday, we reported on the security flaw in Windows 7’s UAC slider dialog, and today, Microsoft has given a response to the situation, but it doesn’t seem like the company intends to fix it. “This is not a vulnerability. The intent of the default configuration of UAC is that users don’t get prompted when making changes to Windows settings. This includes changing the UAC prompting level.” I hope this reply came from a marketing drone, because if they intend on keeping this behaviour as-is in Windows 7 RTM, they’re going to face a serious shitstorm – and rightfully so. Let’s hope the Sinfoskies and Larson-Greens at Microsoft rectify this situation as soon as possible.

41 Comments

  1. 2009-01-31 12:02 pm
  2. 2009-01-31 12:02 pm
    • 2009-01-31 4:22 pm
      • 2009-01-31 4:57 pm
        • 2009-01-31 5:19 pm
          • 2009-01-31 5:36 pm
        • 2009-02-02 9:42 pm
      • 2009-01-31 5:36 pm
      • 2009-01-31 8:28 pm
  3. 2009-01-31 12:45 pm
  4. 2009-01-31 1:25 pm
    • 2009-01-31 5:42 pm
    • 2009-01-31 5:42 pm
      • 2009-02-01 5:50 am
        • 2009-02-01 11:15 am
          • 2009-02-02 11:10 am
    • 2009-01-31 5:46 pm
    • 2009-01-31 9:57 pm
      • 2009-01-31 10:18 pm
        • 2009-01-31 10:53 pm
          • 2009-01-31 11:48 pm
          • 2009-02-01 1:36 am
  5. 2009-01-31 2:08 pm
    • 2009-01-31 2:10 pm
      • 2009-01-31 2:31 pm
        • 2009-01-31 2:38 pm
          • 2009-01-31 2:52 pm
          • 2009-01-31 3:03 pm
          • 2009-01-31 3:07 pm
          • 2009-02-01 7:46 am
          • 2009-01-31 4:53 pm
          • 2009-01-31 6:14 pm
          • 2009-02-01 12:57 am
          • 2009-01-31 6:25 pm
          • 2009-02-01 1:40 am
    • 2009-01-31 2:49 pm
      • 2009-01-31 2:57 pm
        • 2009-02-02 1:36 pm
  6. 2009-01-31 2:19 pm
  7. 2009-02-01 12:55 pm
  8. 2009-02-01 5:42 pm