FutureDomain writes "PC World has an article about how security researchers have developed a way to bypass Vista's UAC. The attack involves installing malicious code with a lower-level program and adding an "executable stub" that is started instead of another higher-level program. When the higher program is run, the malicious code gets to run with the higher program's integrity level. This works because all installers are run with administrator privileges."
In seeking the unattainable, simplicity only gets in the way.
-- Epigrams in Programming, ACM SIGPLAN Sept. 1982