Microsoft security tool EMET 5.0 puts a leash on plugins

  • 1 August 2014
  • 5 replies
  • 2230 views

Userlevel 7
Badge +54
By Jeremy Kirk  Jul 31, 2014
 
The latest release of a Microsoft security tool that’s designed to stop exploits lets administrators control when third-party plugins are launched, a long favored route for attackers.
 
Microsoft has been steadily improving and adding more capabilities to the Enhanced Mitigation Experience Toolkit (EMET), a free tool that strengthens the security of non-Microsoft applications by using defenses built within Windows, such as ASLR (Address Space Layout Randomization) and DEP (Data Execution Prevention).
 
Full Article

5 replies

Userlevel 7
Badge +52

Enhanced Mitigation Experience Toolkit 5.0 Final

EMET is a free tool, designed to help customers with their defense in depth strategies against cyberattacks, by helping detect and block exploitation techniques that are commonly used to exploit memory corruption vulnerabilities. EMET 5.0 further helps to protect with two new mitigations and several other improvements.
Homepage: http://www.microsoft.com/emet

More Info
EMET 5.0 requires .NET Framework 4.
- For Internet Explorer 10 on Windows 8 you need to install KB2790907 – a mandatory Application Compatibility update that has been released on March 12th, 2013 or any other Application Compatibility updates for Windows 8 after that.

Supported Operating Systems
EMET 5.0 supports the following operating systems and service pack levels:
Client Operating Systems
• Windows Vista Service Pack 2
• Windows 7 Service Pack 1
• Windows 8
• Windows 8.1

Server Operation Systems
• Windows Server 2003 Service Pack 2
• Windows Server 2008 Service Pack 2
• Windows Server 2008 R2 Service Pack 1
• Windows Server 2012
• Windows Server 2012 R2

DOWNLOAD EMET v5:http://download.microsoft.com/download/A...0Setup.msi

DOWNLOAD Userguide: http://download.microsoft.com/download/A...0Guide.pdf

http://blogs.technet.com/b/srd/archive/2014/07/31/announcing-emet-v5.aspx
Userlevel 7
Badge +62
Hello Petrovic! Long time no see!;)
 
 
Thank you for the Security News!!
Userlevel 7
Yes, the new version is out but I do feel that there should be some balance when promoting such a tool.  Overall it’s a powerful and configurable tool which really can protect a PC from many zero-day threats. But one need to use it with care, at least initially: if (for example) one start blocking applications from using particular DLLs then it’s hard to predict what will happen.
 
Therefore, unless one is technically knowledgable it is best to protect yourself with some of the more user friendly/no need to really configure freeware/paid applications out there that do a similar job.
 
Just trying to make sure that a sensible balance of perspective is kept re. this tool. ;)
Userlevel 6
@ wrote:
Yes, the new version is out but I do feel that there should be some balance when promoting such a tool.  Overall it’s a powerful and configurable tool which really can protect a PC from many zero-day threats. But one need to use it with care, at least initially: if (for example) one start blocking applications from using particular DLLs then it’s hard to predict what will happen.
 
Therefore, unless one is technically knowledgable it is best to protect yourself with some of the more user friendly/no need to really configure freeware/paid applications out there that do a similar job.
 
Just trying to make sure that a sensible balance of perspective is kept re. this tool. ;)
So true Baldrick!
 
Thank you Petrovic for the info and thank you Jasper for posting the article!:D
Userlevel 7
Badge +56
@ wrote:
Yes, the new version is out but I do feel that there should be some balance when promoting such a tool.  Overall it’s a powerful and configurable tool which really can protect a PC from many zero-day threats. But one need to use it with care, at least initially: if (for example) one start blocking applications from using particular DLLs then it’s hard to predict what will happen.
 
Therefore, unless one is technically knowledgeable it is best to protect yourself with some of the more user friendly/no need to really configure freeware/paid applications out there that do a similar job.
 
Just trying to make sure that a sensible balance of perspective is kept re. this tool. ;)
Correct Buddy and I found no need for it personally!
 
Thanks,
 
Daniel ;)
 
 
 

Reply