Microsoft hacks out new EMET, spits out Adobe Flash Microsoft has emitted a new version of EMET – its Enhanced Mitigation Experience Toolkit. Redmond often recommends deployment of EMET as a frontline defence against attacks, so the release of a new version is noteworthy. The big two enhancements that Microsoft is talking up the loudest are an improved Attack Surface Reduction …
The big two enhancements that Microsoft is talking up the loudest are an improved Attack Surface Reduction (ASR) tool “... configured to block some modules and plug-ins from being loaded by Internet Explorer while navigating to websites belonging to the Internet Zone”.
The new ASR will “also block the Adobe Flash plug-in from being loaded by Microsoft Word, Excel, and PowerPoint.”
So, they are implementing a limited control on application hooking? It's a good first step, but it would be nice if it were more generalized and configurable... and had better online documentation. Still, it's decent of MS to create a rich environment for third-party security vendors.
Installed it and it seems just fine. Uninstalled 4.1 beforehand.
Since XP Embedded is still under support and some customers are paying for past-EOL support on desktop XP, it would be surprising if it did not.
But don't expect MS to take the call if you encounter a problem.
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
