http://blogs.technet.com/rhalbheer/archive/2008/05/27/how-to-hack-windows-vista.aspxNo, no. For sure. I am not going to give you advise how to hack – but look at this video: http://www.offensive-security.com/movies/vistahack/vistahack.html . I am always amazed about these kind of videos, which still surprise people. If look years back,en-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.technet.com/rhalbheer/archive/2008/05/27/how-to-hack-windows-vista.aspx#3061510Tue, 27 May 2008 10:46:43 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3061510 Hacking Windows Vista &raquo; D' Technology Weblog: Technology, Blogging, Tips, Tricks, Computer, Hardware, Software, Tutorials, Internet, Web, Gadgets, Fashion, LifeStyle, Entertainment, News and more by Deepak Gupta.<p>PingBack from <a rel="nofollow" target="_new" href="http://www.ditii.com/2008/05/27/hacking-windows-vista/">http://www.ditii.com/2008/05/27/hacking-windows-vista/</a></p> http://blogs.technet.com/rhalbheer/archive/2008/05/27/how-to-hack-windows-vista.aspx#3061569Tue, 27 May 2008 12:47:45 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3061569Stephen Spence<p>This vector isn't new to Vista.</p> <p>As bitlocker isn't a standard feature it's not a universal fix for Vista either, only shipping on two of the Vista SKUs - Enterprise and Ultimate which represent a small proportion of the systems shipping with Vista.</p> http://blogs.technet.com/rhalbheer/archive/2008/05/27/how-to-hack-windows-vista.aspx#3062378Thu, 29 May 2008 05:29:37 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3062378stuart<p>Surely this could be easily fixed by forcing Vista to check that the Utilman.exe file hasn't been tampered with? I still agree with you on Law #3, but it seems like this particular hack could be prevented.</p> http://blogs.technet.com/rhalbheer/archive/2008/05/27/how-to-hack-windows-vista.aspx#3062505Thu, 29 May 2008 11:22:58 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3062505rhalbh<p>True, but this would prevent this single attack only. At the end of the day we need a way to completely protect software from being tampered, which would mean, having the trusted stack</p> <p>Roger</p> http://blogs.technet.com/rhalbheer/archive/2008/05/27/how-to-hack-windows-vista.aspx#3065137Tue, 03 Jun 2008 05:30:33 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3065137stuart<p>I agree with you, Roger, but I think that any executable that can be launched prior to logging in could be checked to see if it has been tampered with. This would include utilman.exe as well as any other process that can launched under the system account before I've logged in.</p> http://blogs.technet.com/rhalbheer/archive/2008/05/27/how-to-hack-windows-vista.aspx#3065196Tue, 03 Jun 2008 09:00:35 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3065196rhalbh<p>Valid point. This would add trust to the stack</p> <p>Roger</p> http://blogs.technet.com/rhalbheer/archive/2008/05/27/how-to-hack-windows-vista.aspx#3220994Wed, 01 Apr 2009 15:28:50 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3220994tyler<p>that is a valid point i also agree with roger but also think that stuart is correct</p> http://blogs.technet.com/rhalbheer/archive/2008/05/27/how-to-hack-windows-vista.aspx#3228864Tue, 21 Apr 2009 23:58:59 GMTd5e57398-b9ef-4490-9955-07cbb4e4a80d:3228864natxo<p>This is also known to happen with the sticky keys program (sethc.exe); what blows my mind is: why o why do you allow this actions to take place *without* anyone logged on to the console of the OS? </p> <p>Of course I agree that having physical access to the system nearly gives you access to it, but why facilitate it? Why are these programs allowed to execute without logging in? That is just sloppy from MS, especially if one knows that this 'feature' has been present in all windows systems at least since windows 2000.</p>