When ASLR isn't
Jim Cheetham
jim at gonzul.net
Mon Nov 20 22:46:22 GMT 2017
Windows has an Address-Space Layout Randomisation feature, and
multiple ways to request that it is turned on.
If you use EMET or Windows Defender Exploit Guard to enable ASLR, you
get it ... but without any entropy, and therefore your binaries end up
in repeatable locations.
https://www.darkreading.com/vulnerabilities---threats/researcher-finds-hole-in-windows-aslr-security-defense/d/d-id/1330466
More information about the Discuss
mailing list