Mark Russinovich and the Case of the Insecure Security Software

Mark Russinovich of Microsoft blogs today about Security Software and bad default permissions leading to privilege escalation. Regular readers know that this is one of my ways of entertaining myself. Members of my JMU cohort are probably sick of me retelling stories of my past glory. πŸ˜‰
I hope that with Mark’s name behind this that default permissions will receive the attention they are due. It is far to easy to perform a local privilege escalation thanks to some poorly written security software.