If the application that does the code injection needs to pass a UAC prompt before it can be installed, the users agrees the application is trust wordy so it does not need to prompt when it is doing admin stuff?
Am I right? Or doens't the applcation doing the injection need a UAC prompt to install? It doens't need one to boot in any UAC mode i guess because otherwise we would not have this discussion.
The application that does the code injection does not ever need to show a UAC prompt. It does not need to be installed, nor does it need to be elevated to run the code injection.
Furthermore, this risk is increased even more if you take into account remote code vulnerabilities in other unelevated applications. (Not low-privileged applications like IE though)