Elevate any account to administrator

This is kind of a cheap shot because you can do almost anything by booting to another os. But it is possible to elevate your account to an administrative account simply by booting to another os like knoppix and using a number of strategies. One method of doing this is:
1. Create an exe that executes a command like "net user localgroup administrators /add "
2. Boot into knoppix from a cd or flash drive and mount the windows system drive as writable.
3.Replace an exe on the system that will be run under the system account with your exe.
4. Boot into windows and login. As soon as the service is run it will elevate your account.

This is one of many attacks that can be executed this way.

Attack mitigation:

Create a bios or if possible harddisk password and disallow cd/usb boot.