The dynamic buffer overflow detection and prevent ion tool for windows executables using binary rewriting

International Conference on Advanced Communication Technology, ICACT

Volumn 3, Issue , 2007, Pages 1776-1781

  Park, Seon Ho ^a   Han, Young Ju ^a   Hong, Soon Jwa ^b   Kim, Hyoung Chun ^b   Chung, Tai Myoung ^a  

^a Sungkyunkwan University   (South Korea)

^b National Security Research Institute (NSRI)   (South Korea)

Author keywords

Binary rewriting; Buffer overflow detection and prevention; Stack based buffer overflow; Windows vulnerability

Indexed keywords

BINARY CODES; COMPUTER CRIME; DATA STORAGE EQUIPMENT; SECURITY OF DATA; WINDOWS OPERATING SYSTEM;

BINARY REWRITING; BUFFER OVERFLOW DETECTION; STACK BASED BUFFER OVERFLOW; WINDOWS VULNERABILITY;

BUFFER STORAGE;

EID: 34347264136     PISSN: 17389445     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICACT.2007.358715     Document Type: Conference Paper

References (22)

1. A. Baratloo, N. Singh, and T. Tsai. Transparent run-time defense against stack smashing attacks. In USENIX Annual Technical Conference, pages 251-262, Berkeley, CA, June 2000.
2. Anon. Linux Security Audit Project, http://lsap.org/
3. Anup K Ghosh, Tom O'Connor, and Gary McGraw. An Automated Approach for Identifying Potential Vulnerabilities in Software. In Proceedings of the IEEE Symposium on Security and Privacy, Oakland, CA, May 1998.
4. C. Cowan, P. Wagle, and C. Pu. Buffer overflows: Attacks and defenses for the vulnerability of the decade. In Proceedings of the DARPA Information Survivability Conference and Expo (DISCEX), pages 119-129, January 2000.
5. C. Cowan, C. Pu, D. Maier, J.Walpole, P. Bakke, S. Beattie, A. Grier, P. Wagle, and Q. Zhang. StackGuard: Automatic adaptive detection and prevention of buffer-overflow attacks. In Proceedings of the 7th USENIX Security Conference, pages 63-78, San Antonio, Texas, January 1998.
6. Compaq. Ccc C Compiler for Linux. http://www.unix.digital.com/linux/ compaq_c/, 1999.
7. Danny Nebenzahl, Mooly Sagiv, and Avishai Wool. Install-Time Vaccination of Windows Executables to Defend against Stack Smashing Attacks. In Proceedings of the IEEE Transactions on Dependable and Secure Computing, Vol.3, No. 1, January 2006.
8. David Wagner, Jeffrey S. Foster, Eric A. Brewer, and Alexander Aiken. A First step Towards Automated Detection of Buffer Overrun Vulnerabilities. In NDSS(Network and Distributed System Security), San Diego, CA, February 2000.
9. Eldad Eilam. REVERSING: Secrets of Reverse Engineering. Wiley Publishing, Inc., 2005.
10. H. Etoh. GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm.com/projects/security/ssp/, June 2000.
11. J. Wilander and M. Kamkar. A Comparison of Publicly Available Tools for Dynamic Bu er Over ow Prevention, pp.149-162, Proc. of NDSS'03 (Internet Society): Network and Distributed System Security Symp., Feb. 2003, San Diego.
12. M. Prasad and T. cker Chiueh. A Binary Rewriting Defense against Stack Based Overflow Attacks. In Proceedings of USENIX 2003 Ann. Technical Conf., 2003.
13. Michael A. Zhivich. Detecting Buffer Overflows Using Testcase Synthesis and Code Instrumentation. Massachusetts Institute of Technology, 2005.
14. Microsoft Security Bulletin Search. http://www.microsoft.com/technet/ security/current.aspx.
15. O. Ruwase and M. Lam. A practical dynamic buffer overflow detector. In Proceedings of Networks and Distributed System Security Symposium, pages 159-169, 2004.
16. Reed Hasings and Bob Joyce. Purify: Fast Detection of Memory Leaks and Access Errors. In Proceedings of the Winter USENIX Conference, 1992.
17. Richard Blum. Professional Assembly Language. Wiley Publishing, Inc., 2005.
18. Richard Jones and Paul Kelly. Bounds Checking for C. http://www-ala.doc.ic.ac.uk/phjk/BoundsChecking.html, July 1995.
19. T. cker Chiueh and F.-H. Hsu. RAD: A compile-time solution to buffer overflow attacks. In Proceedings of the 21th International Conference on Distributed Computing Systems (ICDIS), Phoenix, Arizona, USA, April 2001.
20. The IDA Pro Disassembler and Debugger, v.4.51, 2003, http://www. datarescue.com/idabase/.
21. Theo de Raadt and et al. OpenBSD Operating System. http://www.openbsd. org/.
22. Tsai Timothy and Navjot Singh. Libsafe: Protecting Critical Elements of Stacks. White Paper 3-21-01, Avaya Labs, Avaya Inc. February, 2001.