There is a new Windows vulnerability which is rapidly sweeping web sites on the internet. You can read about this (or download and listen to a podcast) on Steve Gibson's site http://www.grc.com/default.htm and he has a fix for this on http://www.grc.com/sn/notes-058.htm
I have patched my system as suggested but wondered whether Sandboxie would protect against a "buffer overflow" exploit like this? I presume this means that malicious code could run as a result of the buffer overflow but if it didn't explicitly know about Sandboxie's interception of system calls it's unlikely to get outside the sandbox. Is my understanding correct?
New Windows vulnerability - would Sandboxie avoid this?
-
Unknown_User_458
- Posts: 0
- Joined: Wed Dec 31, 1969 7:00 pm
Yes. I would also say that even if it knows about Sandboxie, it shouldn't find a way around it.
(Nevertheless, if it does find a hole that breaks Sandboxie, then I can quickly react by closing that hole in Sandboxie, in a way that it can never be mis-used again.)
I should also say that I haven't yet tried to see if Sandboxie protects against this vulnerability.
(Nevertheless, if it does find a hole that breaks Sandboxie, then I can quickly react by closing that hole in Sandboxie, in a way that it can never be mis-used again.)
I should also say that I haven't yet tried to see if Sandboxie protects against this vulnerability.
tzuk
Who is online
Users browsing this forum: No registered users and 1 guest
