Ron writes "A security researcher has recently discovered a hole that could help Trojans bypass UAC on Windows Vista. According to his paper, and a Symantec security researcher, this effectively nullifies UAC's protection. The way it works is that the Trojan replaces shortcuts on a user's start menu or desktop with shortcuts to itself. Then, when a user thinks he's elevating his favorite program, such as World of Warcraft, he's actually elevating the malicious program. Cancel or allow?"