Assume Nothing, Article about design flaws using as example a Microsoft Windows Virtual P

Assume Nothing, Article about design flaws using as example a Microsoft Windows Virtual P

Friday, April 30, 2010
Gary McGraw and Iván Arce
InformIT

Article discussing how the sudden invalidation of operating system design assumptions may introduce system-wide vulnerabilities. In this case, the article discusses a design flaw in Microsoft's Virtual PC hypervisor and how it renders noneffective the SafeSEH, DEP and ASLR security hardening mechanisms of Windows operating systems that are running within a virtualized environment.  

Read full article on InformIT's website.