Security News > 2017 > February > Researchers bypass ASLR protection with simple JavaScript code (Help Net Security)

A group of researchers from the Systems and Network Security Group at VU Amsterdam have discovered a way to bypass address space layout randomization (ASLR) protections of major operating systems and browsers by exploiting a common feature of computer microprocessors. By combining simple JavaScript code to target this feature with exploit code for browser or OS vulnerabilities, they were able to compromise vulnerable systems, as demonstrated in this video (on Linux and Firefox): What is … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/t5Ugr7aA_lQ/