the register: A security researcher says he's found a way to potentially bypass the operating system's software whitelist and launch arbitrary scripts. by Chris Williams
'AppLocker lets IT admins managing large networks of machines define which applications and scripts users can and can't run and install. It was introduced in Windows 7, and the idea is to keep users on the straight and narrow: stop them from launching non-work-related programs, stop them from running malicious programs, or stop them from running programs that will involve lots of support calls.
'A security researcher called Casey Smith has found that AppLocker's script defenses can be potentially bypassed with a pretty simple command.
'"It's not well documented that regsvr32.exe can accept a URL for a script," said Smith.'