I recently came upon a Microsoft article that touted new "defensive enhancements" of Windows 7. Specifically:
- Address space layout randomization (ASLR)
- Heap randomization
- Stack randomization
The article went on to say that "...some of these defenses are in the core operating system, and the Microsoft Visual C++ compiler offers others" but didn't explain how these strategies would actually increase security.
Anyone know why memory randomization increases security, if at all? Do other platforms and compilers employ similar strategies?