標題: Detection and diagnosis of control interception
作者: Tsai, Chang-Hsien
Huang, Shih-Kun
資訊工程學系
Department of Computer Science
公開日期: 2007
摘要: Crash implies that a software is unstable and possibly vulnerable. Stack overflow is one of many causes of crashes. This kind of bug is often hard to debug because of the corrupted stack, so that debuggers cannot trace the control flow of the programs. A control-type crash caused by stack overflow is easy to be developed as a control interception attack. We develop a method to locate this attack and implement it as a plug-in of Valgrind [1]. This tool can be used in the honeypot to detect and diagnose zero-day exploits. We use it to detect several vulnerabilities and automatically locate the bugs.
URI: http://hdl.handle.net/11536/8168
ISBN: 978-3-540-77047-3
ISSN: 0302-9743
期刊: INFORMATION AND COMMUNICATIONS SECURITY, PROCEEDINGS
Volume: 4681
起始頁: 412
結束頁: 426
顯示於類別:會議論文