Windows 7’s flaw without a fix.

Posted by Bengaul
April 25, 2009

windows7_v_webResearchers have uncovered what they seem to think is a flaw in Windows 7 that has no fix.  At the Hack in the Box Security Conference in Dubai, Vipin Kumar and Nitin Kumar demonstrated their Vbootkit 2.0 software, and used it to take control of a computer running Windows 7 at boot time.

The hack bypasses the security in Windows 7 by altering the files that get loaded into RAM at boot. The code is only 3KB in size and can allow an attacker to elevate their privileges to the system level, it can also change the administrator password, and allow access to files and folders. Once the hack has been completed the software can reset the password. As the hack only lives in RAM, a reboot will flush the malicious code, and the hack undetectable.

Currently, the code is invisible to any AV vendors software. Although the good news is that the attacker must be present at boot to administer the code. Vbootkit, or Vista bootkit was originally developed for Microsofts current OS, but 2.0 has been developed for Windows 7.

This is not the first time Windows 7 has been the focus of security concerns, the User Account Control (UAC) feature that annoyed so many in Vista was tweaked in W7 to allow it to be disabled without prompting. This cut down the annoyance factor, but allowed a malicious script to emulate keystrokes, disable UAC and force a reboot, thus leaving the operating system open to whatever payload the attacker would have you suffer.

Windows 7 will not be shipping until the end of next year or beginning of the next, so Microsoft have a bit of time to come up with a solution or workaround. However the version of Vbootkit for Vista is able to take control of a computer remotely.

Gadget Gift Ideas
If you like what you’re reading then learn more about joining our FREE newsletter here. Lucky readers will win some fantastic gadget prizes!

Also, check out our recession busting gadgety money saving ideas.

Related posts:

  1. Free Internet Security Software From Panda and Kaspersky; Windows 7 Launch
  2. Windows 7 release candidate available now & the future of Windows Vista
  3. New Version of Windows Live Movie Maker Released For Windows 7 and Vista
  4. Windows 7 Black Screen of Death Caused by Malware: Safety Tips

Share and Enjoy:
Bookmark and Share
AddThis Feed Button
Desktops, General, Laptops, News, PC, Web and Software

If you enjoyed this post, please consider to leave a comment or subscribe to the feed and get future articles delivered to your feed reader.

Comments
Comment by Jamie on April 27, 2009 @ 10:18 pm

“used it to take control of a computer running Windows 7 at boot time”

hahaha. Honestly, this is a complete metaphor about what is wrong with Microsoft. Is it me or do they always seem to be a step behind? It is crazy that world runs on Microsoft but at least its only a dev version of windows 7. As you say this can be rectified before release. No doubt though that it will be delayed in typical Microsoft fashion.

Very nice blog!

Comment by pc repair on April 28, 2009 @ 11:22 am

It is very nice blog and it happens every time with Microsoft there were many issue with window xp and after that window vista as well then same situation with window 7 also

Pingback by HITBSecConf2009 - Dubai » Blog Archive » Post Conference Coverage on May 2, 2009 @ 2:44 am

[...] Windows 7’s flaw without a fix – GAJ IT http://www.gaj-it.com/9305/windows-7s-flaw-without-a-fix/ [...]

Comment by harry on July 20, 2009 @ 7:26 am

Does any know how to fix the bold lettering, It just popped out of nowhere….anyone now whats causing this???

Leave a comment

(required)

(required)