Monday, August 1, 2011

Exploiting JAVA 7 difficult with ASLR !

Java 7 Released.Apart from the security enhancements mentioned, it looks like all modules are now protected with ASLR (Address Space Layout Randomization) so comparably  better protection from JAVA based exploits ! It's a very important security enhancement and going to give some hard time to write exploits for JAVA(JDK/JRE). Needless to say, Upgrade now.Kudos to Sun/Oracle !

Joshua: (via twitter)

"Java 7 is now available. All modules have ASLR enabled, so it is no longer possible to bypass ASLR via a Java ROP. Congrats to Oracle / Sun!"

JAVA 7 Security

JDK 7 Download:

JRE 7 Download

No comments:

Post a Comment