Windows: New, improved & more insecure than everMar 05, 2010, 12:32 (1 Talkback[s])
(Other stories by Steven J. Vaughan-Nichols)
WEBINAR: On-demand Event
Replace Oracle with the NoSQL Engagement Database: Why and how leading companies are making the switch REGISTER >
[ Thanks to Steven J. Vaughan-Nichols for this link. ]
"Unfortunately, Wever, using a variation of a hacking technique he helped perfect called heap-spraying has busted DEP. In heap-spraying, the attack code made an educated guess at where vulnerable memory that could be used to execute unapproved programs could be found. In Wever's latest trick, the attacking code looks for clues on where to find memory that's allowed by DEP to run programs. Once armed with this information, the attack code can then successfully plant itself in the system.
0 Talkback[s] (click to add your comment)