Forum for English speaking Miranda NG users > Bug reports

ASLR (Address Space Layout randomization) is disabled in MirandaNG executables

(1/1)

wisentgenus:
ASLR (Address Space Layout randomization)  is disabled in MirandaNG executables.
This is potentially serious security flow which opens a door for numerous attacks, especially when Miranda is on inet 24/7.

Developers - please add this compilation option to all projects:

/DYNAMICBASE (Use address space layout randomization)

https://msdn.microsoft.com/en-us/library/bb384887.aspx

BigMike:
I want to add, that I've no problems with Miranda x64 stable and ASLR forced as enabled by Microsofts EMET on Windows 10 1703

ghazan:

--- Quote from: wisentgenus on 09 09 2017, 19:09:01 ---ASLR (Address Space Layout randomization)  is disabled in MirandaNG executables.
--- End quote ---
yes, by design. you can easily find any article about dll rebasing and find how it saves a lot of memory and loading time, especially for a program with 200 dlls

Navigation

[0] Message Index