Go Back   Ultimate Web Site Drop Down Menu Forum > News and Information > General Web Trends and News
Register FAQ Members List Calendar Today's Posts

Reply
Thread Tools Display Modes
Unread 07-03-2010, 07:47 PM
sl4shd0t
Posts: n/a
  #1  
Default Many Popular Windows Apps Ignore Security Options

eldavojohn writes "The latest versions of Microsoft Windows have some good security options available mdash; now if only they could get their most popular third-party applications to use them. A report from Secunia takes a look at two such options mdash; DEP and ASLR mdash; and Brian Krebs breaks down who is using them and who is not. A security specialist noted, 'If both DEP and ASLR are correctly deployed, the ease of exploit development decreases significantly. While most Microsoft applications take full advantage of DEP and ASLR, third-party applications have yet to fully adapt to the requirements of the two mechanisms (PDF). If we also consider the increasing number of vulnerabilities discovered in third-party applications, an attacker's choice for targeting a popular third-party application rather than a Microsoft product becomes very understandable.' Among those with neither DEP or ASLR: Apple Quicktime, Foxit Reader, Google Picasa, Java, OpenOffice.org, RealPlayer, and AOL's Winamp. While Flash player can't implement DEP, it does have ASLR. Google Chrome is the only popular third-party application listed with stars across the board." It's worth noting that several apps highlighted in the Secunia research paper have added support for those security options in recent patches, or are in the process of doing so. Examples include Firefox, VLC, and Foxit Reader.pa href="http://www.facebook.com/sharer.php?u=http%3A%2F%2Fdevelopers.slashdot.org% 2Fstory%2F10%2F07%2F03%2F1651208%2FMany-Popular-Windows-Apps-Ignore-Security-Options" target="_blank" title="Share on Facebook"img src="http://a.fsdn.com/sd/facebook_icon_large.png"/a a href="http://twitter.com/home?status=Many+Popular+Windows+Apps+Ignore+Secur ity+Options%3A+http%3A%2F%2Fbit.ly%2FaWc5qG" target="_blank" title="Share on Twitter"img src="http://a.fsdn.com/sd/twitter_icon_large.png"/a/ppa href="http://developers.slashdot.org/story/10/07/03/1651208/Many-Popular-Windows-Apps-Ignore-Security-Options?from=rss"Read more of this story/a at Slashdot./p pa href="http://feedads.g.doubleclick.net/~at/jH9hxw04f1PtUgG0MuPpXZbzTCU/0/da"img src="http://feedads.g.doubleclick.net/~at/jH9hxw04f1PtUgG0MuPpXZbzTCU/0/di" border="0" ismap="true"/img/abr/ a href="http://feedads.g.doubleclick.net/~at/jH9hxw04f1PtUgG0MuPpXZbzTCU/1/da"img src="http://feedads.g.doubleclick.net/~at/jH9hxw04f1PtUgG0MuPpXZbzTCU/1/di" border="0" ismap="true"/img/a/pimg src="http://feeds.feedburner.com/~r/Slashdot/slashdotDevelopers/~4/3SHj3C1gEKo" height="1" width="1"/

More...
Reply With Quote
Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 10:46 PM.


Powered by vBulletin® Version 3.0.1
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.