Sciweavers

ACSAC
2006
IEEE

Static Detection of Vulnerabilities in x86 Executables

14 years 6 months ago
Static Detection of Vulnerabilities in x86 Executables
In the last few years, several approaches have been proposed to perform vulnerability analysis of applications written in high-level languages. However, little has been done to automatically identify security-relevant flaws in binary code. In this paper, we present a novel approach to the identification of vulnerabilities in x86 executables in ELF binary format. Our approach is based on static analysis and symbolic execution techniques. We implemented our approach in a proof-of-concept tool and used it to detect taint-style vulnerabilities in binary code. The results of our evaluation show that our approach is both practical and effective.
Marco Cova, Viktoria Felmetsger, Greg Banks, Giova
Added 10 Jun 2010
Updated 10 Jun 2010
Type Conference
Year 2006
Where ACSAC
Authors Marco Cova, Viktoria Felmetsger, Greg Banks, Giovanni Vigna
Comments (0)