Report: 92 Percent Of Critical Microsoft Vulnerabilities Are Mitigated By Eliminating Administrator Rights -- Security Today

Report: 92 Percent Of Critical Microsoft Vulnerabilities Are Mitigated By Eliminating Administrator Rights

Feb 05, 2009

BeyondTrust Corp. recently published research findings stating that the removal of administrator rights from Windows users is a mitigating factor for the vast majority of all Microsoft software vulnerabilities reported by Microsoft in 2008.

The results demonstrate that by configuring users as standard users, companies can better protect themselves against malware and zero-day threats. Complete findings and methodology can be found online in a new report, titled “Reducing the Threat from Microsoft Vulnerabilities.”

BeyondTrust’s findings show that among the 2008 Microsoft vulnerabilities given a “critical” severity rating, 92 percent shared the same best practice advice from Microsoft to mitigate the vulnerability: “Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.”

This language, found in the “Mitigating Factors” portion of Microsoft’s security bulletins, also appears as a recommendation for reducing the threat from nearly 70 percent of all vulnerabilities reported in 2008.

Other key findings from BeyondTrust’s report show that removing administrator rights will better protect companies against the exploitation of:

94 percent of Microsoft Office vulnerabilities reported in 2008.
89 percent of Internet Explorer vulnerabilities reported in 2008.
53 percent of Microsoft Windows vulnerabilities reported in 2008.

Further illustrating the benefits to enterprises of removing administrator rights from users, a recent Gartner report states: “The Gartner TCO model shows a significant reduction in TCO between a managed desktop where the user is an administrator, compared with a desktop where the user is a standard user. Among the most remarkable observations is that the model shows a 24 percent decrease in the amount of IT labor needed for technical support.”

The complete report can be viewed at http://www.beyondtrust.com/documentation/whitePapers/wp_VulnerabilityReport.pdf.

Digital Edition

April 2020

Featuring:

• Enhancing the Perimeter
• Avoiding Danger with Secure Data Storage
• Making Cities Smarter
• Improving Operations
• A Virus on the Move
View This Issue

Report: 92 Percent Of Critical Microsoft Vulnerabilities Are Mitigated By Eliminating Administrator Rights

Video Conferencing Software Zoom Faces Scrutiny Over Hacks, Abusive Behavior During Meetings

Genetec Announces Immediate Availability of AutoVu™ SharpZ3 Next-Generation Mobile License Plate Recognition System

Zoom CEO Vows To Improve Privacy, Cybersecurity Issues After User Criticisms

Baltimore Approves Six-Month Aerial Surveillance Program To Address Violent Crime

World Health Organization Facing Cyber Attacks During Coronavirus Response

Video Conferencing Software Zoom Faces Scrutiny Over Hacks, Abusive Behavior During Meetings

Digital Edition

April 2020

Whitepapers

The AI (R)Evolution of Enterprise Security

Perimeter and Intruder Security for Educational Establishments

Webinars

Trends in Physical Security Monitoring & Best of Breed Video Surveillance Solutions - How Do Your Current Solutions Stack Up?

What's in the Background? Establishing a Viable Campus CCTV Policy

Education in a Time of COVID-19: Student Privacy Law and Coronavirus