No, ASLR only works if the binary was compiled with relocations. See the section ASLR->Weaknesses in my old report http://0xdabbad00.com/wp-content/uploads/2013/11/emet_4_1_uncovered.pdf …
-
-
For those of you catching up on this thread, MSRC has published a blog post clarifying the behavior that was observed here and how to workaround it:https://blogs.technet.microsoft.com/srd/2017/11/21/clarifying-the-behavior-of-mandatory-aslr/ …
-
As a user, our IT had forced ASLR and random chrome tabs became unusable, some apps just wouldn't work, and the way cygwin shells fork to create new processes would just insta SEGFAULT. These were company supported apps. Please be careful with ASLR.
- 4 more replies
New conversation -
-
-
Hi Will, I'm reporting on this flaw for
@DataBreachToday ... Did you find it after digging into the Embedi "skeletons" blog post? Just curious, cheers. -
Yep, I was looking into what mitigations would have protected users against the eqnedt32 vulnerability when I noticed the problem.
- 3 more replies
New conversation -
-
-
Patch by
@BleepinComputer breaks#PhpStorm (maybe other products of#JetBrains and any#Java application too) on#Windows (Windows 8.1, x64) -
I don't see any problems with Java applications in general when mandatory ASLR is enabled. PhpStorm in particular appears to be written in a way that is not compatible with the ASLR exploit mitigation, though.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.