KLA10437 RCE vulnerability in AMD Catalyst Control Center

An update spoofing vulnerability was found in AMD CCC. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via spoofing update server. Original advisories Charlie Eriksen AMD advisory Related products AMD-Catalyst-Control-Cente...

Video drivers may fail to support Address Space Layout Randomization (ASLR)

Overview Some video drivers fail to support ASLR in Microsoft EMET "Always on" mode, which can limit the amount that such a system can be secured. Description ASLR, when combined with DEP Data Execution Prevention can be an effective mitigation against exploitation of vulnerabilities. For more...