Abstract

Uncontrolled heap memory consumption, a kind of critical software vulnerability, is utilized by attackers to consume a large amount of heap memory and consequently trigger crashes. There have been few works on the vulnerability fuzzing of heap consumption. Most of them, such as MemLock and PerfFuzz, have failed to consider the influence of data flow. We proposed a heap memory consumption guided fuzzing model named MemConFuzz. It extracts the locations of heap operations and data-dependent functions through static data flow analysis. Based on the data dependency, we proposed a seed selection algorithm in fuzzing to assign more energy to the samples with higher priority scores. The experiment results showed that the MemConFuzz has advantages over AFL, MemLock, and PerfFuzz with more quantity and less time consumption in exploiting the vulnerability of heap memory consumption.

Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Using targeted symbolic execution for reducing false-positives in dataflow analysis
Steven Arzt ... Robert Hahn
-
Steven Arzt, et. al.Steven Arzt ... Robert Hahn
14 Jun 2015
Sustainable Solving: Reducing the Memory Footprint of IFDS-Based Data Flow Analyses Using Intelligent Garbage Collection
Steven Arzt
-
Steven ArztSteven Arzt
01 May 2021
Combining static and dynamic data flow analysis
M Mongiovì ... A Fornaia
-
M Mongiovì, et. al.M Mongiovì ... A Fornaia
13 Apr 2015
Automated static data flow analysis
Ishwari Aghav ... Vishal Tathe
-
Ishwari Aghav, et. al.Ishwari Aghav ... Vishal Tathe
01 Jul 2013
View more papers

More From: Mathematics

Paper Title
Journal
Date
Author
New Techniques for Estimating Finite Population Variance Using Ranks of Auxiliary Variable in Two-Stage Sampling
Umer Daraz ... Abdulaziz S Al Naim
Mathematics | VOL. 12
Umer Daraz, et. al.Umer Daraz ... Abdulaziz S Al Naim
03 Sep 2024
Representing the Information of Multiplayer Online Battle Arena (MOBA) Video Games Using Convolutional Accordion Auto-Encoder (A2E) Enhanced by Attention Mechanisms
José A Torres-León ... Hiram Calvo
Mathematics | VOL. 12
José A Torres-León, et. al.José A Torres-León ... Hiram Calvo
03 Sep 2024
Exploring the Dynamic Behavior of Crude Oil Prices in Times of Crisis: Quantifying the Aftershock Sequence of the COVID-19 Pandemic
Fotios M Siokis
Mathematics | VOL. 12
Fotios M SiokisFotios M Siokis
03 Sep 2024
Stochastic Dynamic Buckling Analysis of Cylindrical Shell Structures Based on Isogeometric Analysis
Qingqing Yu ... Jianjiang Zeng
Mathematics | VOL. 12
Qingqing Yu, et. al.Qingqing Yu ... Jianjiang Zeng
03 Sep 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.