Anon Archived Windows 8 broke Microsoft's memory randomisation (theregister.co.uk)
submitted ago by 2253420?
Posted by: 2253420?
Posting time: 3 years ago on
Last edit time: never edited.
Archived on: 2/20/2018 10:00:00 AM
Views: 135
SCP: 18
18 upvotes, 0 downvotes (100% upvoted it)
Anon Archived Windows 8 broke Microsoft's memory randomisation (theregister.co.uk)
submitted ago by 2253420?
view the rest of the comments →
[–] derram ago
https://archive.fo/ipugq | :
"Here's the summary of the bug:It's important to note that while bad, the bug only affects a subset of applications:Essentially, system-wide mandatory ASLR requires a feature called system-wide bottom-up ASLR to be enabled.", "As Dormann's tweet – and his Gist post – describe, sysadmins can set a registry value to force bottom-up ASLR, a wonderful task if you're in charge of a fleet of machines.", "A Carnegie-Mellon CERT researcher has discovered that Microsoft broke some use-cases for its Address Space Layout Randomisation (ASLR) mechanism, designed to severely hamper hackers' attempts to exploit security bugs.", "Dormann was researching why Microsoft's equation editor opened Excel to remote code execution (fixed in last week's patch Tuesday list) when he discovered the ASLR slip-up.", "The programming blunder is simple: as of Windows 8, a flaw in Microsoft's system-wide mandatory ASLR implementation meant applications were allocated addresses with zero entropy – in other words, where they were placed in memory was supposed to be randomized, but wasn't."
This has been an automated message.