A Microsoft vulnerabilities study carried out by Avecto, a privilege-management software vendor, found that 92 percent of the critical vulnerabilities highlighted in Microsoft’s 2013 security bulletins would be mitigated by removing administrator rights. This included 96 percent of critical vulnerabilities affecting Windows and 91 percent of vulnerabilities affecting Microsoft Office.
The firm first looked at 333 vulnerabilities reported by Microsoft in 2013 across all products in its monthly Security bulletins, finding that 60 percent would have been mitigated by removing admin rights. Studying only the 147 rated as the most serious, the mitigation level reached an astonishing 92 percent.
Breaking down the numbers by products, Avecto found that 96 percent of critical flaws were mitigated by removing admin rights on all versions of Windows up to version 8; for Internet Explorer, it was 100 percent, for Office it was 91 percent while even on Windows Server 2003, 2010 and 2012 it was 96 percent. More than half of the vulnerabilities involved Remote Code Execution.
This is what Microsoft says
When you log on to your computer, Windows grants you a certain level of rights and privileges depending on what kind of user account you have. There are three different types of user accounts: standard, administrator, and guest.
Although an administrator account provides complete control over a computer, using a standard account can help make your computer more secure. That way, if other people (or hackers) gain access to your computer while you’re logged on, they can’t tamper with the computer’s security settings or change other user accounts.
Those are some very high numbers and people wonder why Linux and Apple are safer doesn’t look like rocket science to me …..