Hardware DEP saves day again on VML IE exploit


After some testing on the VML zero day exploit for Internet Explorer, I have managed to verify that hardware enforced DEP will prevent the exploit from launching. IE will simply generate a DEP error asking you if you want to make a DEP exception for Internet Explorer (which you should say NO) and crash Internet Explorer. Without hardware enforced DEP, my test machine would have been owned by a ton of Malware from the websites I was testing on.

This is the third time in a row that hardware-enforced DEP has preemptively protected me from a zero-day Internet Explorer exploit. Hardware DEP saves day again on VML IE exploit | George Ou | ZDNet.com

Linked by shanmuga Thursday, 21st September 2006 10:28PM