Al Sardy L, Tang T, Spisländer M, Saglietti F (2017)
Publication Language: English
Publication Type: Conference contribution, Conference Contribution
Publication year: 2017
Publisher: Springer
Pages Range: 103-113
Conference Proceedings Title: Computer Safety, Reliability, and Security SAFECOMP 2017 Workshops, ASSURE, DECSoS, SASSUR, TELERISE, and TIPS
Event location: Trento (I)
ISBN: 9783319662831
URI: https://link.springer.com/chapter/10.1007/978-3-319-66284-8_10
DOI: 10.1007/978-3-319-66284-8_10
This article proposes approaches supporting the analysis of code vulnerabilities based on overlapping machine instructions of variable length. For the purpose of focusing the search for potential malicious code it is suggested to apply first disassembling techniques allowing for a restriction of potentially exploitable memory space. Successively, testing based on heuristic optimization may be applied in order to evaluate dynamically the practicality of vulnerability exploitation.
APA:
Al Sardy, L., Tang, T., Spisländer, M., & Saglietti, F. (2017). Analysis of Potential Code Vulnerabilities involving Overlapping Instructions. In Stefano Tonetta, Erwin Schoitsch, Friedemann Bitsch (Eds.), Computer Safety, Reliability, and Security SAFECOMP 2017 Workshops, ASSURE, DECSoS, SASSUR, TELERISE, and TIPS (pp. 103-113). Trento (I): Springer.
MLA:
Al Sardy, Loui, et al. "Analysis of Potential Code Vulnerabilities involving Overlapping Instructions." Proceedings of the SAFECOMP 2017 Workshop DECSoS, Trento (I) Ed. Stefano Tonetta, Erwin Schoitsch, Friedemann Bitsch, Springer, 2017. 103-113.
BibTeX: Download