Search This Blog

Powered by Blogger.

Blog Archive

Labels

Enhanced Memory Protections to defend IE10 from overflow attacks


After French Firm VUPEN managed to hack the Microsoft's IE 9 on a fully patched Windows7 SP1 machine by exploiting memory related vulnerability, Microsoft enhance the memory protection in next version(Internet Explorer 10).
Internet Explorer 10 introduces significant improvements in memory protections to help make vulnerabilities harder to exploit, helping to keep users safe on the sometimes-hostile Web. These improvements will increase the difficulty and development cost of exploits, making life harder for the bad guys.

Usually, attackers target web browser with buffer overflow vulnerabilities . By exploiting this vulnerability attacker can control the Instruction Pointer(IP) and run his arbitrary code. To ensure the protection over these memory-related vulnerabilities, researchers introduce new security features and enhancing old protection.

The Technical details about the protection can be found here.
Share it:

Security News