New
#1
Microsoft Responds to 2 Minute IE8 Hack.
Source -At the annual Pwn2Own contest, IE8 was hacked in less than two minutes on a fully-patched 64-bit Windows 7 installation by Peter Vreugdenhil who bypassed ASLR (Address Space Layout Randomization) and DEP (Data Execution Prevention). This allowed him to run any process on a computer that visited a website which launched his malicious code, as he had complete access to an interactive shell.
Now Microsoft has responded to the incident, saying that IE8 has “some of the best safety and privacy features available today:”
Protecting Windows customers is an absolute priority for the Internet Explorer engineering team. That’s why we work hard to make sure our browser has some of the best safety and privacy features available today. We’ve spent a lot of time talking about some of the more visible safety and privacy features like our SmartScreen Filter, that protects users from socially engineered malware and phishing attacks; or the InPrivate features that put you in control of how you share your information....................
Microsoft Responds to 2 Minute IE8 Hack | Windows 7 News