{"id":6387,"date":"2006-08-07T19:12:55","date_gmt":"2006-08-07T17:12:55","guid":{"rendered":"https:\/\/destinationcyber.com\/?p=6387"},"modified":"2006-08-07T19:12:55","modified_gmt":"2006-08-07T17:12:55","slug":"windows-vista-de-microsoft-ne-serait-pas-aussi-securise-que-lon-le-laisse-entendre","status":"publish","type":"post","link":"https:\/\/destinationcyber.com\/?p=6387","title":{"rendered":"Windows Vista de Microsoft ne serait pas aussi s\u00e9curis\u00e9 que l&rsquo;on le laisse entendre"},"content":{"rendered":"<p>Pendant que Microsoft faisait des expos\u00e9s sur la s\u00e9curit\u00e9 renforc\u00e9e de Windows Vista lors des conf\u00e9rences Black Hat sur la s\u00e9curit\u00e9, une chercheuse polonaise a d\u00e9montr\u00e9 qu&rsquo;elle pouvait inoculer du code malveillant dans le noyau (KERNEL) du futur syst\u00e8me d&rsquo;exploitation, permettant une prise de contr\u00f4le \u00e0 distance.<\/p>\n<p>Pour sa d\u00e9monstration devant un parterre de sp\u00e9cialistes de l&rsquo;informatique, Joanna Rutkowska, de la soci\u00e9t\u00e9 de s\u00e9curit\u00e9 Coseinc, a utilis\u00e9 la version b\u00eata 2 de Vista dans son \u00e9dition 64 bits.<\/p>\n<p>Elle a montr\u00e9 comment d\u00e9tourner les mesures de s\u00e9curit\u00e9 mises en place au niveau de la gestion des pilotes (drivers) de p\u00e9riph\u00e9riques du futur Windows.<\/p>\n<p>Pour devenir administrateur, la chercheuse a au passage contourn\u00e9 le nouveau syst\u00e8me de gestion de privil\u00e8ges baptis\u00e9 User Account Control (UAC, Contr\u00f4le du compte utilisateur).<\/p>\n<p>Elle a baptis\u00e9 sa m\u00e9thode \u00ab\u00a0Blue Pill\u00a0\u00bb, en r\u00e9f\u00e9rence au film Matrix dans lequel le h\u00e9ros a le choix de prendre une pilule bleue ou rouge, pour respectivement rester dans un univers virtuel ou en sortir.<\/p>\n<p>Fanch<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Pendant que Microsoft faisait des expos\u00e9s sur la s\u00e9curit\u00e9 renforc\u00e9e de Windows Vista lors des conf\u00e9rences Black Hat sur la s\u00e9curit\u00e9, une chercheuse polonaise a d\u00e9montr\u00e9 qu&rsquo;elle pouvait inoculer du code malveillant dans le noyau (KERNEL) du futur syst\u00e8me d&rsquo;exploitation, permettant une prise de contr\u00f4le \u00e0 distance. Pour sa d\u00e9monstration devant un parterre de sp\u00e9cialistes [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_citadela_custom_class":"","footnotes":""},"categories":[15],"tags":[],"class_list":["post-6387","post","type-post","status-publish","format-standard","hentry","category-securite"],"_links":{"self":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts\/6387","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6387"}],"version-history":[{"count":0,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts\/6387\/revisions"}],"wp:attachment":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6387"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6387"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6387"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}