Uninformed: Informative Information for the Uninformed

Vol 9» 2008.Jan

Process Properties

Process exploitation properties carry some information about how easily vulnerabilities found within the context of a running process may be exploited. For example, Internet Explorer running on 32-bit versions of Windows Vista do not make use of hardware-enforced DEP (NX) by default. This means that any vulnerabilities found within code that runs in the context of Internet Explorer will not be protected by non-executable regions. An understanding of exploitation properties that are associated with a process context can help to provide a better understanding of the risks associated with code that may run in the context of a given process. In order to limit the scope of this document, process exploitation properties are not discussed at length.