Identifying buffer overflow vulnerabilities based on binary code

Buffer overflow attack is the most common and arguably the most dangerous attack method. The buffer overflow detecting will play a significant role in network security filed. Various solutions have been developed to address the buffer overflow vulnerability problem. The paper presents a method that combines static analysis with dynamic test. By using the method we can identify a lot of potential weakness locations. A buffer overflow vulnerabilities testing system was developed. Using the system some PE-format files and dynamic link library files are detected respectively. The experiment results show that the method is feasibility and availability.

[1]  Crispan Cowan,et al.  StackGuard: Automatic Adaptive Detection and Prevention of Buffer-Overflow Attacks , 1998, USENIX Security Symposium.

[2]  Reza Azmi,et al.  Vulnerability detector using parse tree annotation , 2010, 2010 2nd International Conference on Education Technology and Computer.

[3]  Seon-Ho Park,et al.  The Dynamic Buffer Overflow Detection and Prevent ion Tool for Yindows Executables Using Binary Rewr iting , 2007, The 9th International Conference on Advanced Communication Technology.

[4]  Minghui Chen,et al.  Research on Buffer Overflow Test Based on Invariant , 2009, 2009 Ninth IEEE International Conference on Computer and Information Technology.

[5]  F. M. Puchkov,et al.  Static Analysis Method for Detecting Buffer Overflow Vulnerabilities , 2005, Programming and Computer Software.

[6]  Ninth IEEE International Conference on Computer and Information Technology, Xiamen, China, CIT 2009, 11-14 October 2009, Proceedings, Volume I , 2009, CIT.