|reply to StuartMW |
Re: IE Zero-Day
Maybe, I don't know.
ASLR and exploit mitigations
Address Space Layout Randomization (ASLR) was introduced in Windows Vista and is essentially a technique to mitigate the infamous Buffer Overrun vulnerabilities by randomly moving the location of code and data in memory. In Windows 8 randomization is increased in order to foil known techniques for bypassing ASLR. Other mitigations include changes to the Windows kernel and heap, including new integrity checks and randomization using a similar approach to ASLR. Internet Explorer 10 will also benefit from these changes: besides including an Enhanced Protected Mode sandbox, there will be a ForceASLR option in IE10 that can randomize all modules loaded into memory by the browser, regardless if those modules did not opt in to use ASLR protection (developers can create modules that take advantage of ASLR protection by using the optional /DYNAMICBASE flag).
EMET provides much more than that.
Boycott AT&T uVerse! | Tom's Android Blog | AOKP (The Android Open Kang Project)
StuartMWWho Is John Galt?Premium
Well regardless XP/Vista/Win7 users would be well served by installing/configuring it. Win8 I'm not sure.
Don't feed trolls--it only makes them grow!