Slashdot Mirror

← Back to Stories (view on slashdot.org)

Defeating XP SP2 Heap Protection

Posted by michael on Saturday January 29, 2005 @11:57AM from the secure-by-design dept.

hobo2k writes "XP SP2 included canary values and hardware-implemented execution protection in order to avoid exploitable buffer overruns. Now Positive Technologies has released an article describing one way that protection could be bypassed. To solve the problem, they provide a program which disables the small allocation heap as described here. CNET reports that SP2 has been foiled."

1 of 242 comments (clear)

Min score:

Reason:

Sort:

So? by FinchWorld · 2005-01-29 12:36 · Score: 0, Redundant

Who are M$ going to blame?
When Are they going to blame them?
When will they bother to fix this?
Place bets NOW
is it
A: Hackers, right away
B: Hackers, from the Open Source community, when they make something better than them (Eg Someone failing asleep on there keyboard)
C: Themselves (Odds at 1 to 10^67^687^3945^Pi for this)

--
"I may be full of crap about this game, and I may be wrong, and that's fine." -Jack Thompson