《计算机应用研究》|Application Research of Computers

格式化字符串漏洞自动检测与测试用例生成

Automatic detection and test cases generation of format string vulnerability based on symbol execution

免费全文下载 (已被下载 次)  
获取PDF全文
作者 黄钊,黄曙光,邓兆琨,黄晖
机构 国防科学技术大学 电子对抗学院,合肥 230037
统计 摘要被查看 次,已被下载
文章编号 1001-3695(2019)08-047-2464-05
DOI 10.19734/j.issn.1001-3695.2018.01.0168
摘要 格式化字符串漏洞是一种危害高、影响广的软件漏洞。当前漏洞检测方式存在人工依赖度高、误报率高、检测模型单一、未能充分考虑格式化字符串漏洞特点等多种局限性。针对以上问题,对格式化字符串漏洞特征进行分析,设计并实现了一种基于符号执行的格式化字符串漏洞自动检测与测试用例生成的系统。该方法可自动检测Linux下二进制程序中格式化字符串漏洞的存在性,判定其是否可能导致任意内存读写危害,并生成稳定有效的测试用例。
关键词 格式化字符串漏洞; 符号执行; 自动检测; 测试用例生成
基金项目 国家重点研发计划重点专项项目
本文URL http://www.arocmag.com/article/01-2019-08-047.html
英文标题 Automatic detection and test cases generation of format string vulnerability based on symbol execution
作者英文名 Huang Zhao, Huang Shuguang, Deng Zhaokun, Huang Hui
机构英文名 College of Electronic Countermeasure,National University of Defense Technology,Hefei 230037,China
英文摘要 The format string vulnerability is a kind of software vulnerability which has high risk and wide impact. Currently, there are many limitations of vulnerability detection method, such as high degree of artificial dependence, high false positive rate, single detection model and failing to consider the characteristics of the format string vulnerability fully. To solve above problems, this paper analyzed the format string vulnerability. Based on symbolic execution, the paper designed and produced a way to detect formatted string vulnerability and generate test cases automatically. This method detected the existence of the format string vulnerability in Linux binary program automatically and determined whether it could lead to harm, which allowed attackers to read or write arbitrary memory. Meanwhile it generated stable and effective test cases.
英文关键词 format string vulnerability; symbolic execution; automatic detection; test cases generation
参考文献 查看稿件参考文献
 
收稿日期 2018/1/23
修回日期 2018/3/10
页码 2464-2468
中图分类号 TP309.2
文献标志码 A