Laurent Mounier , Marie - Laure Potet , Josselin Feist / Statically Detecting Use After Free on Binary Code GreHack 2013 , Grenoble , France
نویسندگان
چکیده
We present GUEB a static tool detecting Use after Free vulnerabilities on disassembled code. This tool has been evaluated on a real vulnerability in ProFTPD (CVE-2011-4130).
منابع مشابه
Combining Static and Dynamic Analysis for Vulnerability Detection
In this paper, we present a hybrid approach for buffer overflow detection in C code. The approach makes use of static and dynamic analysis of the application under investigation. The static part consists in calculating taint dependency sequences (TDS) between user controlled inputs and vulnerable statements. This process is akin to program slice of interest to calculate tainted dataand control-...
متن کاملLazart: a symbolic approach for evaluating the robustness of secured codes against control flow fault injections
In the domain of smart cards, secured devices must be protected against high level attack potential [1]. According to norms such as the Common Criteria [2], the vulnerability analysis must cover the current state-of-the-art in term of attacks. Nowadays, a very classical type of attack is fault injection, conducted by means of laser based techniques. We propose a global approach, called Lazart, ...
متن کاملAdaptable Translator of B Specifications to Embedded C Programs
This paper presents the results of the RNTL BOM project, which aimed to develop an approach to generate efficient code from B formal developments. The target domain is smart card applications, in which memory and code size is an important factor. The results detailed in this paper are a new architecture of the translation process, a way to adapt the B0 language in order to include types of the ...
متن کاملA Maintenance Free Operating Period Policy for a Multi- Component System with Different Information Levels on the Components State
A Maintenance Free Operating Period Policy for a MultiComponent System with Different Information Levels on the Components State Romain Lesobre*, Keomany Bouvard, Christophe Bérenguer, Anne Barros, Vincent Cocquempot Volvo Group Trucks Technology, Advanced Technology and Research – 1 avenue Henri Germain, 69806 Saint Priest Cedex, France Laboratoire Grenoble Image Parole Signal Automatique, Gip...
متن کاملSerendipitous discovery of a human phosphate binding apolipoprotein
LCM3B,CNRS-UniversitéHenri Poincaré, Vandoeuvre-lès-Nancy, France. LCCP, IBS, Grenoble, France. IBMP,CNRS-Université Louis Pasteur, Strasbourg, France. Unité d’Enzymologie, Département de Toxicologie, CRSSA,La Tronche, France. LBSA, Université Henri Poincaré, Vandoeuvre-lès-Nancy, France. LCM, IBS, Grenoble, France. LSMBO, ECPMUniversité louis Pasteur, Strasbourg, France. E-mail: eric.chabriere...
متن کامل