Abstract

Stack buffer overflow vulnerability is a common software vulnerability that can overwrite function return addresses and hijack program control flow, causing serious system problems. Existing automated exploit generation (AEG) solutions cannot bypass position-independent executable (PIE) exploit mitigation and cannot cope with the situation where the standard output function is not introduced into the program. In this paper, we propose a solution to alleviate the above difficulties: BofAEG, which is based on symbolic execution and dynamic analysis to automatically detect stack buffer overflow vulnerability and generate exploit. We used to capture the flag (CTF) and common vulnerabilities and exposures (CVE) programs for experiments. Results show that BofAEG can not only detect and generate exploits effectively but also implement more exploit techniques and is faster than existing AEG solutions.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
An Analysis of Common Vulnerabilities and Exposures in View Of MITRE ATT&CK
Gurinder Pal Singh ... Manish Kumar Hooda
Asian Journal of Convergence in Technology | VOL. 8
Gurinder Pal Singh, et. al.Gurinder Pal Singh ... Manish Kumar Hooda
18 Aug 2022
A Categorization Framework for Common Computer Vulnerabilities and Exposures
Z Chen ... Y Zhang
The Computer Journal | VOL. 53
Z Chen, et. al.Z Chen ... Y Zhang
07 May 2009
A case study on software vulnerability coordination
Jukka Ruohonen ... Ville Leppänen
Information and Software Technology | VOL. 103
Jukka Ruohonen, et. al.Jukka Ruohonen ... Ville Leppänen
19 Jun 2018
Efficient Clustering of Software Vulnerabilities using Self Organizing Map (SOM)
Khyati Panchal ... John Miller
-
Khyati Panchal, et. al.Khyati Panchal ... John Miller
14 Nov 2022
View more papers

More From: Security and Communication Networks

Paper Title
Journal
Date
Author
HMMED: A Multimodal Model with Separate Head and Payload Processing for Malicious Encrypted Traffic Detection
Peng Xiao ... Jian Hu
Security and Communication Networks | VOL. -
Peng Xiao, et. al.Peng Xiao ... Jian Hu
30 May 2024
A Robust Coverless Image Steganography Algorithm Based on Image Retrieval with SURF Features
Fan Li ... Chenyang Liu
Security and Communication Networks | VOL. 2024
Fan Li, et. al.Fan Li ... Chenyang Liu
18 May 2024
Effective and Efficient Android Malware Detection and Category Classification Using the Enhanced KronoDroid Dataset
Mudassar Waheed ... Sana Qadir
Security and Communication Networks | VOL. 2024
Mudassar Waheed, et. al.Mudassar Waheed ... Sana Qadir
08 Apr 2024
Securing the Transmission While Enhancing the Reliability of Communication Using Network Coding in Block-Wise Transfer of CoAP
Mohammed D Halloush
Security and Communication Networks | VOL. 2024
Mohammed D HalloushMohammed D Halloush
28 Mar 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.