Please create an account to participate in the Slashdot moderation system


Forgot your password?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Comment Overhyped and Not What It Seems (Score 3, Informative) 415

Ok, I just read most of the actual white paper ( and this technique requires:

1.) A browser exploit that allows for a buffer overflow.

2.) A .NET control or Java applet loaded into the browser's memory whose PE header has been modified to include the malicious shell code.

Given these two things (only the 2nd of which is actually a given), you would still be constrained by Protected Mode in IE. In other words, the best you could do would be to crash the browser and maybe generate an error dialog of some sort.

If, however, the exploit was in a component that used a broker class to facility communications with a browser plugin, and that broker class was running as the current user, then you could at least access that user's files/data. If the broker class was running as system (which none do), you could take over the machine.

Flash is an example of a BAD, BAD plugin that has a broker class which could be used to facilitate an attack like this.

But let me reiterate that you first need an exploit, and that exploit must be one in an existing browser plugin (basically just Flash) that has a brokering mechanism that bypasses Protected Mode.

Without that, this doesn't do jack. Really, this is just a reliable way to defeat DEP/ASLR. Nothing more. It just makes the Flash exploit used in the hacking contest a few months back a bit more interesting. That exploit has since been patched, btw.

This is bad, but very, very overhyped.


Submission + - Vista is Hitting Its Stride (

ThinkFr33ly writes: Windows Vista is starting to see mass adoption from businesses nearly a year after it was released, the company said while predicting a strong first holiday season for the product... Microsoft delivered quarterly results last week that eclipsed Wall Street's most bullish forecasts, helped in part by strong demand for Vista.

Slashdot Top Deals

Real Users find the one combination of bizarre input values that shuts down the system for days.