View Full Version : Defeating Windows Driver Signature Enforcement #2: CSRSS and thread desktops

j00ru vx tech blog
November 11th, 2012, 10:20
To stand by my claim that the Microsoft Windows operating system has been built on the fundamental assumption that administrative privileges would always be equivalent to granting the ability to run arbitrary ring-0 code, I have decided to briefly discuss yet another portion of some Windows internals and how they could be easily misused by [...]