Comment by tonymet
22 days ago
False . Even escalated sustem32 is blocked by protected folders. The write silently fails and logs to MS Defender
22 days ago
False . Even escalated sustem32 is blocked by protected folders. The write silently fails and logs to MS Defender
Well, try again. I just managed to copy a random .exe to C:\Windows\System32 using an administrator account. I got a typical UAC dialog that most people would blindly click "Continue" on, and the copy succeeded. :)
And you likely have protected folders and certainly s mode disabled
It's a testing box, sure, but a lot of people have the same setting, usually because of some legacy app that requires it.
It does contradict your insistence that Windows would never allow such things. An exploit doesn't need to do its thing silently in order to be effective. If a security apparatus can be bypassed by tricking a user to flip a switch, it WILL be bypassed. Heck, just trying to install or update Notepad++ throws up a UAC dialog. Who would suspect anything?
1 reply →
That’s via explorer not an installer