Enhanced Memory Protections in IE10

re: Enhanced Memory Protections in IE10

GreenCat — Sat, 17 Mar 2012 06:44:49 GMT

And, Is it inapplicable to all 64-bit process of whole system?

re: Enhanced Memory Protections in IE10

GreenCat — Sat, 17 Mar 2012 06:37:06 GMT

Although written HEASLR can be setting also by IFEO, what is a setting name?

re: Enhanced Memory Protections in IE10

EricLaw [ex-MSFT] — Wed, 14 Mar 2012 16:54:46 GMT

@Brenno: On Win7, the only way to opt-in to ForceASLR is via an Image File Execution Options registry flag. The kernel update KB was pushed via WU yesterday. See support.microsoft.com/.../2639308

@Harold: Yes, uninstalling IE9 will revert to the IE8 that shipped with Win7.

@bricky149: As described in this post, memory protections make it harder to reliably exploit vulnerabilities to lead to code execution. However, they don't make exploitation "impossible" in general, although in some cases the protections cannot be circumvented. It depends on the nature of the vulnerability.

@Viktor Krammer: Plugins may be designed to run in desktop IE in EPM. The user must have both 32bit and 64bit versions of the plugin installed, and the plugin must be listed within a particular COM Component Category to mark it as EPM compatible.

@Bob: Sandboxing is, alas, far more complicated than most people think. Most "add-on" sandbox models are not actually secure because they're leaky; they're usually providing "security by obscurity" because so few people run them. In terms of supported, "native" sandboxes, you should read the 3/14/2012 post on Enhanced Protected Mode, which is based on the Win8 AppContainer sandbox.

re: Enhanced Memory Protections in IE10

SanC — Wed, 14 Mar 2012 16:24:52 GMT

@7tester : I'm guessing you didn't agree to run or launch any files, so perhaps you had something like java or flash installed and enabled? Even without plugins there's no major browser that is 100% resistant to hacking, but with plugins it's a lot easier. If you have flash/java or other activex controls enabled, (but especially those two) then you're at much greater risk than in default configuration, unless you enable activex filtering to block those things.

After that, running MSIE 64bit instead of 32bit (if possible) gives you some more security, though it might be slower in some areas. (Personally I take the speed hit just in case.)

I also disable "Launch programs and files in an iframe". (This is a recommendation from msmvps.com/.../default.aspx - the reason given is that the bad guys/gals use it a lot more than the good ones. Probably thru adverts?)

re: Enhanced Memory Protections in IE10

Stifu — Wed, 14 Mar 2012 16:11:07 GMT

@Harold: just in case, did you try adding a X-UA-Compatible meta to your site, to force IE8 rendering even when using IE9?

re: Enhanced Memory Protections in IE10

Harold — Wed, 14 Mar 2012 13:38:26 GMT

Ok, this is extremely off topic but I haven't found a definitive source from Microsoft that answers the following question (unfortunately needed due to IE9 incompatibilities still under investigation) and this is the best place on the Internet to get any response/attention from Microsoft.

We have clients that are buying Windows 7 laptops/desktops that come pre-installed with IE9. (e.g. They never had IE8 installed)

The question is, can IE9 be downgraded to IE8 on these machines? The documentation here suggests it can be done, but I need confirmation before telling my client that it is possible based on hearsay.

**Yes I'm totally aware that downgrading is not the best option, fixing the app that doesn't work on IE9 is the priority... however in the mean time I need a solution to ensure clients can use the app**

Please note... if you want to reply with what you "think" is the answer... DON'T... I'm looking for cold hard facts... from a reliable source...

thanks

re: Enhanced Memory Protections in IE10

Viktor Krammer [Quero] — Wed, 14 Mar 2012 12:35:18 GMT

Why is there no option to swtich tabs to 64-bit in Desktop IE10 on the Windows 8 Consumer Preview? Only way I found is to enable Enhanced Protected Mode, but EPM runs plug-ins free. I think there should be a 64-bit mode, which also allows 64-bit add-ons and plug-ins like the IE9 64-bit edition does.

re: Enhanced Memory Protections in IE10

bricky149 — Tue, 13 Mar 2012 22:46:38 GMT

I think memory protections like this are ingenious, but something tells me you're sharing this now to revalidate the point that Chrome got hacked 3 times altogether at both Pwnium and Pwn2Own through Chrome's coding. These protections will prevent that, right?

re: Enhanced Memory Protections in IE10

7tester — Tue, 13 Mar 2012 21:44:02 GMT

just 2 days back i was browsing a web site (news web site - x17online.com) in IE and my computer got affected by Alureon.A trojan. my pc was fully patched. even though it got affected. removal process of that trojan is a hell even though i am a tech guy, than just imagin what would happen to non tech user. i dont know some how its very easy to get virus from IE.

re: Enhanced Memory Protections in IE10

I Can Haz Proper English — Tue, 13 Mar 2012 21:18:50 GMT

I think you want: "Enhanced Memory Protection" (no "s"). The plural of protection is protection.

Otherwise it sounds like your are only try to spread informations around the interwebz (sic, sic, sic, sic)