Microsoft has released EMET 5.2
EMET has been updated to version 5.2 [ 1 ], [ 2 ], [ 3 ], [ 4 ]. In the new version, the company introduced a number of improvements, in particular, the EMET libraries themselves were compiled with support for the latest Visual Studio 2015 compiler feature called Control Flow Guard (CFG) . Such a security function may relate to the mechanisms of self-defense of the executable legitimate code from outside interference (code hijacking).
The protection feature called Attack Surface Reduction (ASR) adds support for the VBScript Scripting Engine library (vbscript.dll), for which a large number of vulnerabilities have been closed. Apparently, it is for this reason that he was on the ASR list. The library is used by Internet Explorer and attackers can execute the code remotely in the browser, if the RCE vulnerability is present.
')
Another EMET 5.2 internal function called “Enhanced Protected Mode / Modern IE” allows EMET to get information about the operation of the Enhanced Protected Mode (EPM) of Internet Explorer 11.
Download EMET 5.2 at this link .
The protection feature called Attack Surface Reduction (ASR) adds support for the VBScript Scripting Engine library (vbscript.dll), for which a large number of vulnerabilities have been closed. Apparently, it is for this reason that he was on the ASR list. The library is used by Internet Explorer and attackers can execute the code remotely in the browser, if the RCE vulnerability is present.
')
Another EMET 5.2 internal function called “Enhanced Protected Mode / Modern IE” allows EMET to get information about the operation of the Enhanced Protected Mode (EPM) of Internet Explorer 11.
Enhanced Protected Mode / Modern IE: EMET now fully supports Internet Explorer, or Desktop IE with Enhanced Protected Mode mode enabled.
Download EMET 5.2 at this link .
Source: https://habr.com/ru/post/252959/
All Articles