A First Step Towards Automated Detection of Buffer Overrun Vulnerabilities

13 years 8 months ago

Download www.isoc.org

We describe a new technique for ﬁnding potential buffer overrun vulnerabilities in security-critical C code. The key to success is to use static analysis: we formulate detection of buffer overruns as an integer range analysis problem. One major advantage of static analysis is that security bugs can be eliminated before code is deployed. We have implemented our design and used our prototype to ﬁnd new remotely-exploitable vulnerabilities in a large, widely deployed software package. An earlier hand audit missed these bugs.

David Wagner, Jeffrey S. Foster, Eric A. Brewer, A

Real-time Traffic

Buffer Overrun Vulnerabilities | Buffer Overruns | Computer Networks | NDSS 2000 | Static Analysis |

claim paper

» Dynamic SystemWide Reconfiguration of Grid Deployments in Response to Intrusion Detections

Post Info
More Details (n/a)

Added	01 Aug 2010
Updated	01 Aug 2010
Type	Conference
Year	2000
Where	NDSS
Authors	David Wagner, Jeffrey S. Foster, Eric A. Brewer, Alexander Aiken

Comments (0)

Sciweavers

A First Step Towards Automated Detection of Buffer Overrun Vulnerabilities

Buffer Overrun Vulnerabilities | Buffer Overruns | Computer Networks | NDSS 2000 | Static Analysis |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers