RIP ROP? Think again
A Carnegie-Mellon CERT researcher has discovered that Microsoft broke some use-cases for its Address Space Layout Randomisation (ASLR) mechanism, designed to severely hamper hackers’ attempts to exploit security bugs.
Source: Microsoft’s memory randomization security defense is a little busted in Windows 8, 10