23.03.2015, 18:00
Dan pędzi jak błyskawica- VS w wersji beta 2.31i
I w krótkim odstępie czasu kolejna - VoodooShield Beta 2.31j
Cytat:Sorry I have been away, I have been working on something pretty cool.Źródło: wilderssecurity.com
You will now see an option in Settings / Advanced "Enable VoodooShield anti-exploit for all web apps in all file / folder locations"
Basically, VS works just like it did before, but now any new child process of a web app or possible exploitable software (Java, Acrobat, etc), is automatically blocked, even if it is in one of the automatically allowed folders (Program Files, Windows, etc.), unless it is specifically whitelisted. Of course, this all happens before the Parent Process feature has a chance to allow something.
This all came about because an acquaintance of Miquell named Adam discovered a way to drop exploit payloads to the Program Files folder in earlier versions of Windows (I believe Windows 7 and below) and earlier versions of Java (I believe Java 7 and below). So thank you Miquell and Adam for all of your help!
CET mentioned that I should check into this possible security hole awhile back as well, so thank you for your help as well!
I think everything is working properly, but I am going to send this to Adam to see what he thinks. I just wanted you guys to try it in the meantime to see if VS is now blocking something that it should not be blocking, or is doing something that it should not be doing.
I also added a few other things, for example, the number of threats blocked. Thank you Callender for the recommendation!
Hopefully I will have time to catch up on the posts I missed later today, if not, very soon! Thank you!
[Aby zobaczyć linki, zarejestruj się tutaj]
I w krótkim odstępie czasu kolejna - VoodooShield Beta 2.31j
Cytat:This version is compatible with XP, but the new exploit protection feature might not work until we implement the KMD, which is going to be a little while. I highly, highly doubt a virus would ever act that way anyway, and I have never seen it.Źródło: wilderssecurity.com
There were a few small bugs in the last version, but I think they are all worked out now. I really am going to not add any more features until we are 100% sure all of the bugs are worked out. Thank you!
[Aby zobaczyć linki, zarejestruj się tutaj]