An update is available for the Enhanced Mitigation Experience Toolkit 4.1
Release Date: April 29, 2014
Enhanced Mitigation Experience Toolkit 4.1 Update 1 (link to download)
Issues that this update resolves
• Minor UI and stability improvements:
◦Expired Certificate Trust rules are now highlighted in the user interface (UI).
◦Expired Certificate Trust rules no longer trigger notification.
◦Resolves an issue in which CTRL+A (Select All) on any table cannot be undone.
◦Resolves a rare issue in which an exception is thrown when you open the support link on the Help menu.
•Application compatibility issues:
◦Enables MemProt, SimExecFlow, and CallerCheck mitigations with Google Chrome Canary Edition, Adobe Acrobat, Adobe Reader, Apple iTunes, and other programs.
◦Resolves a deadlock issue that is caused by the incorrect use of missing reporting functionality in Windows XP.
•Configuration and deployment improvements:
◦By default, enables the DeepHooks global flag as part of the Recommended Settings configuration.
◦Extends the expiration date for all default Certificate Trust rules to 8/1/2015.
◦Resolves an issue in which the GPO application configuration is parsed incorrectly. This results in AuditMode being unintentionally enabled for the configured applications.
◦Resolves an installer issue in which EMET_Agent cannot start when it is deployed in silent mode.
Also includes Certificate Trust default rules update ("Since several SSL/TLS certificates for many popular third-party websites were recently updated,"):
We recommend all EMET 4.1 customers download this new version and install it, since the benefits of all these improvements are noticeable.
We also recommend all EMET 3.0 and 4.0 customers to upgrade to EMET 4.1 Update 1
EMET 4.1 Update 1
(EMET User's Guide.pdf can also be selected at the download link, but I don't believe it's been updated since EMET 4.1 six months ago.)