The COM elevation moniker is one of the three recommended ways to have a user application do tasks that require admin privileges. The UAC document from September 2006 refers to it as the Admin COM Object model under the section “Key Decisions for Designing...

We often get the question how to elevate a process through ShellExecute. From the docs it is not immediately clear. The trick is passing in "runas" in the lpVerb. Here is a snippet to run notepad elevated. #include "stdafx.h" #include "windows.h...

Just noticed that there is a solid document on UAC here: http://download.microsoft.com/download/5/6/a/56a0ed11-e073-42f9-932b-38acd478f46d/WindowsVistaUACDevReqs.doc It mentions the following: " When a user with an administrator...

UAC has something called Mandatory Integrity Control or MIC. It is a security enhancement that is orthogonal to the existing Windows security model. Let me explain. The traditional security model was based on a token of a process. If a process was running...

Security got a lot of attention in Vista. UAC, LoRIE, Session 0 isolation are all prime examples. There are other areas that don’t get as much attention, but the OS implementation has changed and things that used to work in XP days, all of a sudden break...

We found an interesting issue the other day when a call to SHGetFileInfo crashed with an Access Violation. Entry in the c all stack contained the following like this: Access violation - code c0000005 . .. shell32!SHGetDesktopFolder+0xa0 ... shell32...

This blog is maintained by a group of consultants from the Microsoft's US Enterprise Services - ISV Practice. We are working with ISVs to make sure that their applications are running well on Windows Vista. This keeps us fairly busy, predominantly because...