Tag Archive for: EMET

EMET security tool updated to prevent VBScript God Mode attacks

/in

Microsoft updated its Enhanced Mitigation Experience Toolkit (EMET), a free exploit prevention tool, to protect against attacks that attempt to bypass Internet Explorer’s sandbox using VBScript.

Microsoft first released EMET 5.2 last week, but re-released it Monday to fix issues that some customers experienced when running the tool in conjunction with Internet Explorer 11 on Windows 8.1.

The new version offers protection against so-called VBScript God Mode attacks, which rely on a method documented last year that can bypass anti-exploitation mechanisms like Data Execution Prevention (DEP), Address Space Layout Randomization (ASLR) and Control-Flow Integrity (CFI).

To read this article in full or to leave a comment, please click here

Network World Security

Microsoft updates EMET security tool to solve compatibility issues, harden exploit mitigations

/in

Microsoft’s Enhanced Mitigation Experience Toolkit (EMET), a security program popular with companies, was updated Monday to harden the exploit mitigations that it adds to other programs and to address compatibility issues with some of them.

The compatibility issues affected popular applications including Internet Explorer, Adobe Reader, Adobe Flash, and Mozilla Firefox when EMET mitigations like Export Address Table Filtering Plus (EAF+) were applied to them.

Like most EMET mitigations, EAF+ is a set of safeguards and checks designed to block the execution of arbitrary code when memory corruption vulnerabilities are exploited. It was first added in EMET 5.0, released in July.

To read this article in full or to leave a comment, please click here

Network World Security

Former BlueHat Prize winner pwns Microsoft, researcher bypasses all EMET protections

/in

At BSides security conference in San Francisco, Bromium Labs’ security researcher Jared DeMott showed attack code capable of bypassing “all of the protections” in Microsoft’s free Enhanced Mitigation Experience Toolkit (EMET) 4.1.
Ms. Smith’s blog

Black Hat: Microsoft incorporates BlueHat Prize finalist defensive tech & releases EMET 3.5 Preview

/in

Las Vegas – It has only been a few months since the close of the BlueHat Prize entry period and today Microsoft announced that it has already incorporated one of the BlueHat Prize finalist’s defensive technologies. It’s designed to mitigate attacks that leverage Return Oriented Programming (ROP), into its latest Enhanced Mitigation Experience Toolkit (EMET) 3.5 Technology Preview. Read more

Ms. Smith’s blog