Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: EMET 4.0 now available for download

17 Jun 2013   #1
Microsoft MVP

64-bit Windows 10 build 10122
EMET 4.0 now available for download

We are pleased to announce that the final release of version 4.0 of the Enhanced Mitigation Experience Toolkit, best known as EMET, is now finally available for download. You can download it from Download Enhanced Mitigation Experience Toolkit 4.0 from Official Microsoft Download Center.

We already mentioned some of the new features introduced in EMET 4: Certificate Trust, mitigations improvement hardening, and the Early Warning Program. During our beta period we added new features and solved application compatibility issues that have been reported both externally and internally. Below is a summary of the changes and enhancements:

Redesigned User Interface: We realized that with the addition of the new features introduced in EMET 4.0 Beta, the old graphical user interface was not as effective and easy to use. For this reason, we decided to re-design EMETís GUI to facilitate and streamline the configuration operations. We also added the possibility to select the look-and-feel of EMET from a set of skins that we included. Finally, the new user interface is accessible and will change automatically according to your system settings:

Configuration Wizard: We know that configuration can be challenging when installing EMET for the first time. In EMET 3.0 we added the Protection Profiles, which were used to facilitate the initial configuration for applications. With EMET 4.0 we are introducing a Configuration Wizard that will automatically configure EMET with a standard set of SSL certificate pinning rules as well as a list of applications to protect. It also can preserve existing EMET 3.0 settings, and gives the possibility to add standard configuration for the new features. The Configuration Wizard will start automatically during EMETís installation and can also be accessed, at any time, from EMET GUI. Advanced users can choose to apply a standard configuration through the Configuration Wizard and then customize EMETís configuration afterwards according to their needs.

Changes in Certificate Trust: We made a few changes to the Certificate Trust feature, based on usersí feedback, further internal investigation, and partnership with third party online services. We added a new exception to the SSL certificate pinning rules that if enabled will make EMET verify just the Public Key component of the Root CAs present in the rule without matching subject name and serial number. Additionally, we made the Certificate Trust feature available on 64-bit versions of Internet Explorer. Finally, we added to the previous default rules for Microsoft online services new rules also for Twitter, Facebook, and Yahoo!.

Updated Group Policy profiles: Enterprise customers will notice that we updated our Group Policy profiles to include not only the ability to configure system and application mitigations, but also the reporting mechanisms, the advanced mitigation configurations, and the exploit action.

If you have EMET 4.0 Beta or EMET 3.5 Technical Preview installed on the system, you will need to uninstall them before installing EMET 4.0, and you will need to remove EMETís configuration from the registry, by deleting the registry hives HKLM\Software\Microsoft\EMET and, if existing, HKLM\Software\Policies\Microsoft\EMET. If you have EMET 3.0 installed on the system, you donít need to uninstall it before installing EMET 4.0. The previous version will be uninstalled and at the end of the installation youíll have the opportunity to migrate the existing settings or to reset EMET configuration with the new default settings.

We want to thank those of you that downloaded EMET 4.0 Beta in the past two months and that provided valuable feedback that greatly helped us finalize EMET 4.0. In particular, we want to thank the Yang Yu from NSFocus security team that reported a technique that allowed to bypass EMETís protections, and Adam Langley and Cem Paya from Google for feedback on the Certificate Trust feature. As said, we received many, many emails, and it would be impossible to name all the people that provided feedback for EMET 4.0 Beta. You know who you are, and we really appreciated your effort in testing EMET and reaching out to us to provide feedback. Again, thank you!

We truly hope that you enjoy all the new features that we introduced in EMET 4.0. We will continue working on improving EMET to provide better and better protections against internet attacks for customers and to make it even more user friendly and easy to use.
Read more at source: EMET 4.0 now available for download - Security Research & Defense - Site Home - TechNet Blogs

See also: Enhanced Mitigation Experience Toolkit (EMET)

My System SpecsSystem Spec

18 Jun 2013   #2

Windows 7 64-bit, Windows 8.1 64-bit, OSX Maverick

EMET 4.0 had been delayed a number of times. I am wondering, if there's going to be changes to the 4.0 beta that I've been running on my machine.

Thanks for the heads up...
My System SpecsSystem Spec
18 Jun 2013   #3

Windows 7 64-bit, Windows 8.1 64-bit, OSX Maverick

Well, there are couple of changes in the final EMET 4.0. The interface is different and it broke IE10, both the 32 and 64-bit versions. In addition to event ID 1000 error message in the logs, IE gives this error message:

EMET 4.0 now available for download-ie10-emet4.jpg

And after couple of "Internet Explorer stopped working..." messages, it displays this:

EMET 4.0 now available for download-ie10-emet4-error.jpg

The website in question has no problems, it opens up just fine with Firefox or Opera, both of them have been added to EMET for additional protection against malware.

I'll uninstall EMET 4.0 and if that does not fix the issue, restore the image that had been created just prior to installing the final version of EMET.

You may want to create an image as well, prior to installing EMET 4.0...

My System SpecsSystem Spec


 EMET 4.0 now available for download

Thread Tools

Similar help and support threads
Thread Forum
EMET from Microsoft
Hi all Can anyone explain what Enhanced Mitigation Experience Toolkit does, in REALLLLLY simple language? Is it something that I want to add? I am using Windows 7 with Free Avast and Pro SUPERAntiSpyware. Thanks.
System Security
What programs do you add to EMET?
I have installed EMET and imported the two lists (I skipped the certificate list). I have added Sumatra PDF, but nothing else yet. I'm not sure what other programs I might want to add, or if anyone has had issues when adding certain programs to EMET. I can see the logic behind having Java, Adobe...
System Security
Emet 3.0.0
Im struggling to understand whether emet is protecting my system or not. I have it running, but the profile it is running is custom setting profile if i change to maximum and restart for effects to take place, nothing happens as custom profile is still the used profile. In the running EMET column...
Performance & Maintenance
New version of EMET is now available
New version of EMET is now available - Security Research & Defense - Site Home - TechNet Blogs
Security News

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 17:26.

Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App