When ASLR isn't

Jim Cheetham jim at gonzul.net
Mon Nov 20 22:46:22 GMT 2017


Windows has an Address-Space Layout Randomisation feature, and
multiple ways to request that it is turned on.

If you use EMET or Windows Defender Exploit Guard to enable ASLR, you
get it ... but without any entropy, and therefore your binaries end up
in repeatable locations.

https://www.darkreading.com/vulnerabilities---threats/researcher-finds-hole-in-windows-aslr-security-defense/d/d-id/1330466


More information about the Discuss mailing list