Escaping From Microsoft Windows Sandboxes presented at Blackhat Europe 2011

by Tom Keetch (Verizon),

Tags: Security

Summary : Many applications such as Internet Explorer, Adobe Reader and Google Chrome make use of Microsoft's "practical sandboxing" techniques. But how much additional protection does this provide against memory corruption attacks?
This talk will evaluate three consumers of this sandboxing mechanism point out similarities, differences and ultimately flaws within each of these "sandbox" mechanisms.