Researchers show they can beat address space layout randomization with Javascript in a browser (!)



Address space layout randomization is an important first line of defense against malicious software: by randomizing where in memory instructions are stored, ASLR makes it much harder to overwrite memory with new code that will be jumped to as a program executes, offering significant protection against buffer overflow attacks.

(more…)



Source link