Title
Assume Nothing
Authors
Gary McGraw and Iván Arce
In
InformIT
Date published
2010-04-30
Keywords
Microsoft, Windows, hypervisor, vm, virtual machine, Virtual PC, design flaw, vulnerability, ASLR, DEP, SafeSEH

Abstract

Article discussing how the sudden invalidation of operating system design assumptions may introduce system-wide vulnerabilities. In this case, the article discusses a design flaw in Microsoft's Virtual PC hypervisor and how it renders noneffective the SafeSEH, DEP and ASLR security hardening mechanisms of Windows operating systems that are running within a virtualized environment

Attachments