Windows Vista includes a new memory protection system called ASLR. Its goal is to escape buffer overflow attacks in vulnerable programs. One of our consultant, Ali Rahbar, has made a complete study of this security mechanism, and found a new implementation flaw that allows to bypass this protection :
http://www.sysdream.com/articles/Analysis-of-Microsoft-Windows-Vista's-ASLR.pdf Regards, Renaud Lifchitz Information Security Consultant SYSDREAM: http://www.sysdream.com/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/