New 0 day windows vulnerability

Avast Free Antivirus / Premium Security
1

hxxp://nakedsecurity.sophos.com/2010/11/25/new-windows-zero-day-flaw-bypasses-uac/#comments
I hope avast team are working on this?

2

Please change your link so it is non-linkable…change http to hXXP so no one can get malware.

Also, submit your url to Virus Total (VT) http://www.virustotal.com/ and report your results back in this thread.

FYI - In the future, subject like this belong in the Virus and Worms section of the forum. :wink: Thank you.

3

Thanks, will keep both in mind. However, it is not a ‘bad’ link at least AFAIK.

4

We do not encourage this as our goal is to keep users safe. Someone might accidentally click on it and it may lead to malware. It may not be your link, but it could be someone else’s in another thread. So as a general rule, we have users change the link to non-linkable links. Thank you for understanding.

5

This is Sophos Labs blog, why change the link to hXXp?
Sophos is a very well trusted Security Company :wink: [Even you see them in VirusTotal results :wink: ]

6

I used the link provided by the OP, unsurprisingly no ill effects.

7

@ Omid Farhang

I am trying to educate in general for the forum. I am sending you a PM.

8

It’s just a link to the article…

9

Safesurf - are you suggesting there should be no live links posted by users of the forum?

(Peronally I might tend to agree, but then I’m a bit paranoid about these things by normal standards)

10

No, I’m saying when people are referring to questions regarding possible malware or getting Avast alerts when they were surfing and they were on a site, etc. Until it is investigated further, it is better to play it safe. However in this thread, I see I am out numbered due to the fact that the link was from Sophos. I hope this answers your question. Thank you.

11

And my entire question in the opening post seems to have been sidetracked into whether links should be posted into this forum. I was quite aware that the link was to a security site, not a malware site.

My issue is that is avast! team working on it? If required can some mod move this to the right forum. Bypassing user restrictions is serious and that is why I rely on avast! or other AV solution.

Otherwise working only as limited user, chances of any infection is remote.

12

I read the same tale in another blog somewhere, and formed the impression that, although the vulnerability gives malware admin

privileges, if UAC for the admin account is set to always notify you would stil get a warning and the opportunity to block (but I

could easily be wrong).

It does look a bit of a feeding frenzy - sorry about that. You should take it as a compliment - it means folks expect what you say to be right.