UI Access

1. UI Access allows accessible-level interaction from applications running different integrity levels while administrative application have access to system-level resources.
2. UI Access is as insecure as an elevated process with the huge caveat that doesn't have access to system-level assets making harder to vertical level attacks to affect
3. Is harder to an escalation of privileges
4. https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/user-account-control-allow-uiaccess-applications-to-prompt-for-elevation-without-using-the-secure-desktop
5. And the why is harder:
6. https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/user-account-control-only-elevate-uiaccess-applications-that-are-installed-in-secure-locations
7. The requirements are tailored to make it so, only applications installed AND with the proper configuration in the manifest (plus a verified signature) are able to bypass the UIPI