Have you ever seen a client-side attack attack on a desktop (e.g. drive-by install) invoke a privilege escalation vulnerability? i.e. seen admin access gained when the attack was on a limited account? If so: - Was a payload involved? - Was the system up to date? - Were you doing something generally considered risky when the attack occurred? Edit: Sorry, forgot to make this a poll. D'oh!