Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Microsoft / Internet Explorer

Internet Explorer

IE8 DEP/NX in Windows Server 2008, Vista SP1 and Later (Windows 7)

Data Execution Prevention or No-Execute

By Marius Oiaga, Technology News Editor

9th of April 2008, 10:56 GMT

Adjust text size:


Internet Explorer 8
Enlarge picture
Marking an evolution in terms of security in contrast to its predecessor, Internet Explorer 8, even as early as the first beta, is set up with the "enable memory protection to help mitigate online attacks" option on by default. Memory protections refers to Data Execution Prevention (DEP) or No-Execute (NX) and, according to Microsoft, the feature
is valid for Windows Server 2008, Windows Vista SP1 and "later." These unspecified terms could be a reference to the Service Pack 2 updates to both Vista and Windows Server 2008, but they could also point that IE8 will bring to Windows 7, the next version of the Windows operating system.

"DEP/NX helps to foil attacks by preventing code from running in memory that is marked non-executable. DEP/NX, combined with other technologies like Address Space Layout Randomization (ASLR), make it harder for attackers to exploit certain types of memory-related vulnerabilities like buffer overruns. Best of all, the protection applies to both Internet Explorer and the add-ons it loads. No additional user interaction is required to provide this protection, and no new prompts are introduced," stated Eric Lawrence, IE Program Manager.

Internet Explorer 7 had DEP/NX disabled by default because Microsoft had identified compatibility problems. Essentially, IE7 with DEP/NX enabled failed to play well with browser add-ons that were put together using an outdated variant of the ATL library. Starting with version 7.1 SP1, ATL no longer features the problematic dynamically generated code.

The "new DEP/NX APIs have been added to Windows Server 2008 and recent Windows Service Packs to enable use of DEP/NX while retaining compatibility with older ATL versions. These new APIs allow Internet Explorer to opt-in to DEP/NX without causing add-ons built with older versions of ATL to crash," Lawrence added.

Internet Explorer 8 (IE8) Beta 1 is available for download here.

TAGS:

 IE8 | Internet Explorer 8 | Beta 1 | Microsoft


Rating:
Good (3.0/5) 4 vote(s) so far    

Read by 1,762 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


The Evolution of the Address Bar in IE8 Beta 1

The New IE8 User Experience, Poor Only Until Beta 2

Internet Explorer 8 - Breaking the Web

Safari 3.1 Beats Firefox 3 and IE8 to the Market

IE8 Masquerading as IE7 and Vice Versa Is Critical to Ensure Compatibility

Free Windows Vista and XP SP2 Downloads Updated and up for Grabs

Opera 9.5 Bests IE 8 and Firefox 3.0 - Download Available

IE8 Beta 1 vs. Firefox Beta 4

Microsoft: We Have Not Committed to a Release Date for IE8

Onward to Beta 2 - The Second Wave of IE8 Beta 1 Downloads Is Here

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive