Linked by Thom Holwerda on Mon 18th Jan 2010 22:00 UTC
Internet Explorer Ah, the security vulnerability that was used in the Google attack. It's been around the internet about a million times now, and even governments have started advising people to move away from Internet Explorer. As is usually the case, however, the internet has really blown the vulnerability out of proportion. I'll get right to it: if your machine and/or network has been compromised via this vulnerability, then you most likely had it coming. No sympathy for you.
Thread beginning with comment 404862
To view parent comment, click here.
To read all comments associated with this story, please click here.
cb_osn
Member since:
2006-02-26

Again those guys did it on XP without DEP. IE8 enables DEP by default so it will be much harder. Btw main reason why IE7 didn't have DEP enabled by default? Third party ActiveX component, try guess which ;) .

The Java plugin. With DEP enabled, the JIT engine would dump generated machine code into memory pages marked with the NX bit and then attempt to execute it causing the JVM to crash.

Reply Parent Score: 2