dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
1955
share rss forum feed


ashrc4
Premium
join:2009-02-06
australia

2 edits
reply to PrntRhd

Re: Nvidia driver exploit allows super user escalation

FYI : Disable Built-in Administrator Account (super user)
»www.howtogeek.com/howto/windows-···s-vista/

First you need to enable the "One time" super user acc.
Set a password for it, then disable it.

Helps protect against some physical access issues.
--
Paradigm Shift beta test pilot. "Dying to defend one's small piece of suburb...Give me something global...STAT!


Tuulilapsi
Kenosis

join:2002-07-29
Finland
reply to PrntRhd

So basically this is yet another case of "we don't understand ACLs", this time from nVidia, eh? And here I was, hoping this kind of stuff was... well, stuff of the decade past.

Okay, so, what can all those folks with ancient nVidia cards, who are mortally afraid of updating their drivers lest the whole shebang crash and burn, do about this? I've got some people I know who are still using stuff like the geforce 7900 or what not. So the flaw is in the NVSvc service? Can that be just disabled to prevent exploiting the vulnerability? I don't even have an nVidia card on any of my rigs, so I can't well test if those cards can live without that service.
--
Limited User Accounts.
Software Restriction Policies.



norwegian
Premium
join:2005-02-15
Outback


Disabling the service is fine. As I've mentioned I used to do it as part of my cleanup of XP services.

--
The only thing necessary for the triumph of evil is for good men to do nothing - Edmund Burke