Announcement AMD Radeon RX 6600 XT
Arctic Liquid Freezer II 360 A-RGB review
Cooler Master Masterair MA624 Stealth/MA612 Stealth ARGB review
EVGA GeForce RTX 3080 Ti FTW3 Ultra Review
F1 2021: PC graphics performance benchmark review
Asustor Drivestor 4 Pro (AS3304T) NAS Review
Colorful iGame GeForce RTX 3090 KUDAN review
Corsair Virtuoso RGB Wireless XT headset review
Galax HOF OC Lab Water Cooling 4400 MHz CL19 review
Scythe Mugen 5 Black air cooler review
Windows Vista security rendered useless by researchers
The genius of this is that it's completely reusable. That's completely game over. Dino Dai Zovi -- Security researcher
Many of the defenses that Microsoft added to Vista and Windows Server 2008 are designed to stop host-based attacks. ASLR, for example, is meant to prevent attackers from predicting target memory addresses by randomly moving things such as a process's stack, heap and libraries. That technique is useful against memory-corruption attacks, but Dai Zovi said that against Dowd's and Sotirov's methods, it would be of no use.
"This stuff just takes a knife to a large part of the security mesh Microsoft built into Vista," Dai Zovi said. "If you think about the fact that .NET loads DLLs into the browser itself and then Microsoft assumes they're safe because they're .NET objects, you see that Microsoft didn't think about the idea that these could be used as stepping stones for other attacks. This is a real tour de force."
Microsoft officials have not responded to Dowd's and Sotirov's findings, but Mike Reavey, group manager of the Microsoft Security Response Center, said Wednesday that the company is aware of the research and is interested to see it once it becomes public.
Dai Zovi stressed that the techniques Dowd and Sotirov use do not rely on specific vulnerabilities. As a result, he said, there may soon be similar techniques applied to other platforms or environments.
"This is not insanely technical. These two guys are capable of the really low-level technical attacks, but this is simple and reusable," Dai Zovi said. "I definitely think this will get reused soon, sort of like heap spraying was.
Watcher
Many of the defenses that Microsoft added to Vista and Windows Server 2008 are designed to stop host-based attacks. ASLR, for example, is meant to prevent attackers from predicting target memory addresses by randomly moving things such as a process's stack, heap and libraries. That technique is useful against memory-corruption attacks, but Dai Zovi said that against Dowd's and Sotirov's methods, it would be of no use.
"This stuff just takes a knife to a large part of the security mesh Microsoft built into Vista," Dai Zovi said. "If you think about the fact that .NET loads DLLs into the browser itself and then Microsoft assumes they're safe because they're .NET objects, you see that Microsoft didn't think about the idea that these could be used as stepping stones for other attacks. This is a real tour de force."
Microsoft officials have not responded to Dowd's and Sotirov's findings, but Mike Reavey, group manager of the Microsoft Security Response Center, said Wednesday that the company is aware of the research and is interested to see it once it becomes public.
Dai Zovi stressed that the techniques Dowd and Sotirov use do not rely on specific vulnerabilities. As a result, he said, there may soon be similar techniques applied to other platforms or environments.
"This is not insanely technical. These two guys are capable of the really low-level technical attacks, but this is simple and reusable," Dai Zovi said. "I definitely think this will get reused soon, sort of like heap spraying was.
Watcher
« Sexy Red Alert 3 Gemma Atkinson wallpaper · Windows Vista security rendered useless by researchers
· Far Cry 2 System Requirements »
Microsoft urges companies to dump Windows XP - 09/19/2011 10:09 AM
In an new post on the official Windows blog site, Microsoft's Stephen L Rose stated that there are two big reasons for leaving Windows XP behind. One of them is, of course, the fact that there is a ne...
Windows 8 BSODs in a new style - 09/16/2011 10:15 AM
NetworkWorld reports Windows 8 features a new Blue Screen of Death (BSOD). After expressing emoticon-style sadness, the new screen reads: Your PC ran into a problem that it couldn't handle, and now it...
Windows 8 Metro browser will not support plugins including Flash - 09/16/2011 10:13 AM
Microsoft announced that the Metro version of the Internet Explorer 10 browser in Windows 8 will be plug-in free. The desktop version will still support plug-ins but the news is likely another nail in...
Download & Try out Windows 8 - 09/14/2011 12:36 PM
See what
Microsoft shows off Windows 8 preview - 09/14/2011 10:04 AM
Microsoft presented a developer preview of Windows 8 at its BUILD conference in Los Angeles. The company demonstrates the new Metro user interface, Internet Explorer 10, new touch features and many ot...