Corsair 4000D PC Chassis Review
TeamGroup EX2 SSD 1TB review
Deepcool AS500 air cooler review
Leven JS600 1 TB SATA3 SSD review
ClockTuner for Ryzen v1.1 (CTR) Guide by 1USMUS
Colorful GeForce RTX 3080 iGAME VULCAN review
Corsair HS60 Haptic Headset review
Corsair K60 RGB Pro keyboard review
Deepcool Macube 110 chassis review
Leven JPR600 2 TB NVMe SSD Review
Windows Vista security rendered useless by researchers
The genius of this is that it's completely reusable. That's completely game over. Dino Dai Zovi -- Security researcher
Many of the defenses that Microsoft added to Vista and Windows Server 2008 are designed to stop host-based attacks. ASLR, for example, is meant to prevent attackers from predicting target memory addresses by randomly moving things such as a process's stack, heap and libraries. That technique is useful against memory-corruption attacks, but Dai Zovi said that against Dowd's and Sotirov's methods, it would be of no use.
"This stuff just takes a knife to a large part of the security mesh Microsoft built into Vista," Dai Zovi said. "If you think about the fact that .NET loads DLLs into the browser itself and then Microsoft assumes they're safe because they're .NET objects, you see that Microsoft didn't think about the idea that these could be used as stepping stones for other attacks. This is a real tour de force."
Microsoft officials have not responded to Dowd's and Sotirov's findings, but Mike Reavey, group manager of the Microsoft Security Response Center, said Wednesday that the company is aware of the research and is interested to see it once it becomes public.
Dai Zovi stressed that the techniques Dowd and Sotirov use do not rely on specific vulnerabilities. As a result, he said, there may soon be similar techniques applied to other platforms or environments.
"This is not insanely technical. These two guys are capable of the really low-level technical attacks, but this is simple and reusable," Dai Zovi said. "I definitely think this will get reused soon, sort of like heap spraying was.
Watcher
Many of the defenses that Microsoft added to Vista and Windows Server 2008 are designed to stop host-based attacks. ASLR, for example, is meant to prevent attackers from predicting target memory addresses by randomly moving things such as a process's stack, heap and libraries. That technique is useful against memory-corruption attacks, but Dai Zovi said that against Dowd's and Sotirov's methods, it would be of no use.
"This stuff just takes a knife to a large part of the security mesh Microsoft built into Vista," Dai Zovi said. "If you think about the fact that .NET loads DLLs into the browser itself and then Microsoft assumes they're safe because they're .NET objects, you see that Microsoft didn't think about the idea that these could be used as stepping stones for other attacks. This is a real tour de force."
Microsoft officials have not responded to Dowd's and Sotirov's findings, but Mike Reavey, group manager of the Microsoft Security Response Center, said Wednesday that the company is aware of the research and is interested to see it once it becomes public.
Dai Zovi stressed that the techniques Dowd and Sotirov use do not rely on specific vulnerabilities. As a result, he said, there may soon be similar techniques applied to other platforms or environments.
"This is not insanely technical. These two guys are capable of the really low-level technical attacks, but this is simple and reusable," Dai Zovi said. "I definitely think this will get reused soon, sort of like heap spraying was.
Watcher
« Sexy Red Alert 3 Gemma Atkinson wallpaper · Windows Vista security rendered useless by researchers
· Far Cry 2 System Requirements »
Microsoft urges companies to dump Windows XP - 09/19/2011 10:09 AM
In an new post on the official Windows blog site, Microsoft's Stephen L Rose stated that there are two big reasons for leaving Windows XP behind. One of them is, of course, the fact that there is a ne...
Windows 8 BSODs in a new style - 09/16/2011 10:15 AM
NetworkWorld reports Windows 8 features a new Blue Screen of Death (BSOD). After expressing emoticon-style sadness, the new screen reads: Your PC ran into a problem that it couldn't handle, and now it...
Windows 8 Metro browser will not support plugins including Flash - 09/16/2011 10:13 AM
Microsoft announced that the Metro version of the Internet Explorer 10 browser in Windows 8 will be plug-in free. The desktop version will still support plug-ins but the news is likely another nail in...
Download & Try out Windows 8 - 09/14/2011 12:36 PM
See what
Microsoft shows off Windows 8 preview - 09/14/2011 10:04 AM
Microsoft presented a developer preview of Windows 8 at its BUILD conference in Los Angeles. The company demonstrates the new Metro user interface, Internet Explorer 10, new touch features and many ot...