Memory Vulnerability Diagnosis for Binary Program

Vulnerability diagnosis is important for program security analysis. It is a further step to understand the vulnerability after it is detected, as well as a preparatory step for vulnerability repair or exploitation. This paper mainly analyses the inner theories of major memory vulnerabilities and the...

Full description

Saved in:
Bibliographic Details
Published in:ITM web of conferences Vol. 7; p. 3004
Main Authors: Tang, Feng-Yi, Feng, Chao, Tang, Chao-Jing
Format: Journal Article Conference Proceeding
Language:English
Published: Les Ulis EDP Sciences 2016
Subjects:
Cybersecurity
Diagnosis
ISSN:2271-2097, 2431-7578, 2271-2097
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Vulnerability diagnosis is important for program security analysis. It is a further step to understand the vulnerability after it is detected, as well as a preparatory step for vulnerability repair or exploitation. This paper mainly analyses the inner theories of major memory vulnerabilities and the threats of them. And then suggests some methods to diagnose several types of memory vulnerabilities for the binary programs, which is a difficult task due to the lack of source code. The diagnosis methods target at buffer overflow, use after free (UAF) and format string vulnerabilities. We carried out some tests on the Linux platform to validate the effectiveness of the diagnosis methods. It is proved that the methods can judge the type of the vulnerability given a binary program.
Bibliography:ObjectType-Conference Proceeding-1
SourceType-Conference Papers & Proceedings-1
content type line 21
ISSN:2271-2097
2431-7578
2271-2097
DOI:10.1051/itmconf/20160703004