An analysis of Microsoft Windows Vista’s ASLR

[Renaud Lifchitz <r.lifchitz () sysdream com>]

Windows Vista includes a new memory protection system called ASLR. Its
goal is to escape buffer overflow attacks in vulnerable programs. One of
our consultant, Ali Rahbar, has made a complete study of this security
mechanism, and found a new implementation flaw that allows to bypass
this protection :

http://www.sysdream.com/articles/Analysis-of-Microsoft-Windows-Vista's-ASLR.pdf


Regards,

Renaud Lifchitz
Information Security Consultant
SYSDREAM: http://www.sysdream.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/