I have an executable running ("heidisql.exe"). The Sysinternals Process Explorer shows "DEP (permanent)
" in the column DEP.
I checked the binary statically (among other things using pestudio). The static analysis results all said that DEP is not supported, that is, the IMAGE_DLLCHARACTERISTICS_NX_COMPAT
bit is not set.
Why does the Process Explorer show DEP (permanent)
then?
To make it even stranger: BinScope (free tool from Microsoft) does not list the result of the 'NXCOMPAT check
' at all, neither under 'Failed checks', 'Checks that didn't complete' or 'Passed checks'. What is this supposed to mean?