Suchergebnisse für

xp-update

Data Execution Prevention (DEP) is a feature included in modern Microsoft Windows operating systems that is intended to prevent an application or service from executing code from a non-executable memory region. This helps prevent certain exploits that store code via a buffer overflow, for example. DEP runs in two modes: hardware-enforced DEP for CPUs that can mark memory pages as nonexecutable, and software-enforced DEP with a limited prevention for CPUs that do not have hardware support. Software-enforced DEP does not protect from execution of code in data pages, but instead from another type of attack (SEH handler overwrite). This type of attack has been used one time only. [1]

DEP was introduced in Windows XP Service Pack 2 and is included in Windows XP Tablet PC Edition 2005, and Windows Server 2003 Service Pack 1. Alles über Windows Vista, Office 2007 und den Windows. Windows Vista and later operating systems support this feature as well.

Hardware protection

Hardware-enforced DEP enables the NX bit on CPUs that support it. DEP works by marking certain parts of memory as being intended to hold only data, which the NX or XD bit enabled processor then understands to not be executable. This helps prevents buffer overflow attacks from succeeding.

In some instances, Data Execution Prevention can have the unintended consequence of preventing legitimate software from executing. In these cases, the affected software needs to be flagged as being allowed to execute code in those parts of memory, but this itself leads to a possible attack if the application isn't rigorous in validating data that is passed into a region of memory that is marked as being executable. Setup-CD mit Service Pack 2.