We found a match
Your institution may have access to this item. Find your institution then sign in to continue.
- Title
BofAEG: Automated Stack Buffer Overflow Vulnerability Detection and Exploit Generation Based on Symbolic Execution and Dynamic Analysis.
- Authors
Xu, Shenglin; Wang, Yongjun
- Abstract
Stack buffer overflow vulnerability is a common software vulnerability that can overwrite function return addresses and hijack program control flow, causing serious system problems. Existing automated exploit generation (AEG) solutions cannot bypass position-independent executable (PIE) exploit mitigation and cannot cope with the situation where the standard output function is not introduced into the program. In this paper, we propose a solution to alleviate the above difficulties: BofAEG, which is based on symbolic execution and dynamic analysis to automatically detect stack buffer overflow vulnerability and generate exploit. We used to capture the flag (CTF) and common vulnerabilities and exposures (CVE) programs for experiments. Results show that BofAEG can not only detect and generate exploits effectively but also implement more exploit techniques and is faster than existing AEG solutions.
- Subjects
ALLGEMEINE Elektricitats-Gesellschaft AG; PRODUCTION standards; GOLGI apparatus
- Publication
Security & Communication Networks, 2022, p1
- ISSN
1939-0114
- Publication type
Article
- DOI
10.1155/2022/1251987