On the effectiveness of DEP and ASLR

Discussion in 'other security issues & news' started by MrBrian, Dec 18, 2010.

Thread Status:
Not open for further replies.
  1. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
  2. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,855
    I don't know why MS don't make information like this "more known", so that the public are atleast aware without having to read a blog. For example, that's the first time I've heard of that IE9 improvement. It wasn't mentioned in the IE9 blog or website.
     
  3. chronomatic

    chronomatic Registered Member

    Joined:
    Apr 9, 2009
    Posts:
    1,343
    Because most people don't know what DEP/ASLR even are. Everyone has been conditioned to believe that security = AV software. Give me DEP/ASLR along with OS level access controls any day over AV software.
     
  4. trismegistos

    trismegistos Registered Member

    Joined:
    Jan 29, 2009
    Posts:
    365
    An exploit that bypasses ASLR and DEP on Windows 7

    An exploit that bypasses ASLR and DEP on Windows 7... http://www.infoworld.com/d/security-central/researchers-reveal-attack-code-new-ie-zero-day-981

     
Loading...
Thread Status:
Not open for further replies.