IBM/VMware experts break through Vista memory Protection

Source: Internet
Author: User

Two computer system security researchers demonstrated a new technique to completely bypass Vista's memory protection mechanism at a Black Hat Security Conference in Las Vegas recently, it brings a new idea to network security threats.

Mark Dowd from IBM Internet Security System ISS and Alexander Sotirov from VMware, a virtual machine software company, demonstrated at the conference that they cracked Vista's random address allocation and ASLR) and performed data protection (DEP). They can use Java, Active X, and. Net objects to load malicious code to Web browsers, mainly for IE browsers.

Because this method can be used to access the victim system at will and load arbitrary code, it is extremely destructive, so its technical details are not completely disclosed. However, security experts who have studied their papers have said that this new attack method is a breakthrough and Microsoft is likely to be powerless. Because it does not take advantage of any new IE or Vista vulnerabilities, it starts to attack the infrastructure of Vista.

The famous security expert Dino Dai Zovi said: "The genius of this method is that it is completely reproducible. They can load any code wherever they want. Vista is complete. In the face of this new method, almost all browser vulnerabilities seem ordinary. A large number of security prevention methods have been ineffective, and ASLR and hardware DEP have no ability to defend against such attacks ."

Microsoft did not comment on the findings. However, Mike Reavey, manager of the Microsoft Security Response Center, said they have noticed the study and will conduct an in-depth investigation once its methods are published. It is worth noting that Microsoft is not the only one to worry about. It is said that this method is not based on any specific system security vulnerabilities, and similar attacks against other platforms or environments may be quickly imitated.

Related Articles]

  • Eight basic measures to ensure the security of Windows Vista
  • Consider Vista again
  • How to configure memory protection in Windows XP SP2

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.