RIM: A method to defend from JIT spraying attack

Proceedings - 2012 7th International Conference on Availability, Reliability and Security, ARES 2012

Volumn , Issue , 2012, Pages 143-148

  Wu, Rui ^a   Chen, Ping ^a   Mao, Bing ^a   Xie, Li ^a  

^a NANJING UNIVERSITY   (China)

Author keywords

JIT spraying attack; Just In Time Compilation; malicious script

Indexed keywords

ARITHMETIC INSTRUCTIONS; ARITHMETIC OPERATIONS; CODE REUSE; JAVASCRIPT; JIT COMPILER; JIT SPRAYING ATTACK; JUST IN TIME; JUST-IN-TIME COMPILATION; MALICIOUS CODES; MALICIOUS SCRIPT; NATIVE CODE; PROTECTION MECHANISMS; SHELLCODE; VIRTUAL MACHINES; WEB APPLICATION;

JAVA PROGRAMMING LANGUAGE; PROGRAM COMPILERS; WORLD WIDE WEB;

JUST IN TIME PRODUCTION;

EID: 84869467444     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ARES.2012.11     Document Type: Conference Paper

References (22)

1. Address space layout randomization in linux. https://lkml.org/lkml/2010/ 11/30/110.
2. iphone security bug lets innocent-looking apps go bad. http://www.forbes.com/sites/andygreenberg/2011/11/07/iphone-security-bug-lets- innocent-looking-apps-go-bad/.
3. Jit-spray attacks & advanced shellcode (2010). http://dsecrg.com/ files/pub/pdf/HITB%20-%20JITSpray%20Attacks%20and%20Advanced%20Shellcode.pdf.
4. Kvm. http://www.linux-kvm.org/page/Main-Page.
5. Qemu. http://wiki.qemu.org/Main Page.
6. Tamarin project. http://wwwarchive.mozilla.org/projects/tamarin/.
7. Using jit spraying attack to hijack applications. http://www. securitynewsdaily.com/jit-spraying-hackers-findnew-ways-to-hijack-documents- 1022/.
8. P. Bania. Jit spraying and mitigations. CoRR, abs/1009.1038, 2010.
9. D. Blazakis. In Blackhat, 2010. Interpreter exploitation: Pointer inference and jit spraying.
10. P. Chen, Y. Fang, B. Mao, and L. Xie. Jitdefender: A defense against jit spraying attacks. In J. Camenisch, S. Fischer-Hübner, Y. Murayama, A. Portmann, and C. Rieder, editors, Future Challenges in Security and Privacy for Academia and Industry, volume 354 of IFIP Advances in Information and Communication Technology, pages 142-153.
11. P. Chen, H. Xiao, X. Shen, X. Yin, B. Mao, and L. Xie. Drop: Detecting return-oriented programming malicious code. In A. Prakash and I. Sen Gupta, editors, Information Systems Security, volume 5905 of Lecture Notes in Computer Science, pages 163-177.
12. W. De Groef, N. Nikiforakis, Y. Younan, and F. Piessens. Jitsec: Just-in-time security for code injection attacks. In Benelux Workshop on Information and System Security (WISSEC 2010), November 2010.
13. Y. Ding, T. Wei, T. Wang, Z. Liang, and W. Zou. Heap taichi: exploiting memory allocation granularity in heap-spraying attacks. In Proceedings of the 26th Annual Computer Security Applications Conference, ACSAC '10, pages 327-336, New York, NY, USA, 2010. ACM.
14. M. Egele, E. Kirda, and C. Kruegel. Mitigating driveby download attacks: Challenges and open problems. In J. Camenisch and D. Kesdogan, editors, iNetSec 2009 C Open Research Problems in Network Security, volume 309 of IFIP Advances in Information and Communication Technology, pages 52-62.
15. M. Egele, P. Wurzinger, C. Kruegel, and E. Kirda. Defending browsers against drive-by downloads: Mitigating heapspraying code injection attacks. In U. Flegel and D. Bruschi, editors, Detection of Intrusions and Malware, and Vulnerability Assessment, volume 5587 of Lecture Notes in Computer Science, pages 88-106.
16. F. Gadaleta, Y. Younan, and W. Joosen. Bubble: A javascript engine level countermeasure against heap-spraying attacks. In F. Massacci, D. Wallach, and N. Zannone, editors, Engineering Secure Software and Systems, volume 5965 of Lecture Notes in Computer Science, pages 1-17.
17. Microsoft Corporation. On the effectiveness of DEP and ASLR. http://blogs.technet.com/b/srd/archive/2010/12/08/onthe-effectiveness-of-dep- and-aslr.aspx.
18. The Pax team. http://pax.grsecurity.net/docs/aslr.txt.
19. H. Shacham. The geometry of innocent flesh on the bone: return-into-libc without function calls (on the x86). In Proceedings of the 14th ACM conference on Computer and communications security, CCS '07, pages 552-561, New York, NY, USA, 2007. ACM.
20. Sintsov. In Technical Report of Digital, 2010. Writing JITspray shellcode for fun and profit.
21. Skylined. Internet Explorer IFRAME src&name parameter BoF remote compromise, 2004. http://skypher.com/wiki/index.php?title=www.edup.tudelft.nl/ ~bjwever/advisory iframe.html.php.
22. T. Wei, T. Wang, L. Duan, and J. Luo. Secure dynamic code generation against spraying. In Proceedings of the 17th ACM conference on Computer and communications security, CCS '10, pages 738-740, New York, NY, USA, 2010. ACM.