Security Comm Networks
 2016
DOI: 10.1002/sec.1681
|View full text |Cite
|
Sign up to set email alerts
|

A smart fuzzing method for detecting heap‐based vulnerabilities in executable codes

Maryam Mouzarani
1
,
Babak Sadeghiyan
2
,
Mohammad Reza Zolfaghari
3

Abstract: In this paper, we present a smart fuzzing method for detecting six classes of heap‐based vulnerabilities in executable codes, that is, heap‐based buffer overflow, buffer underwrite, buffer over‐read, buffer under‐read, double‐free, and use‐after‐free vulnerabilities. In the proposed method, the executable code is instrumented to perform concolic (concrete + symbolic) execution and calculate the constraints on input data for executing a specific path. We also define a number of vulnerability constraints that de… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

0
0
0

Year Published

2018
2018
2024
2024

Publication Types

Select...
3
1
1

Relationship

0
5

Authors

Journals

citations
Cited by 6 publications
references
References 35 publications
0
0
0
Order By: Relevance

CtxFuzz: Discovering Heap-Based Memory Vulnerabilities Through Context Heap Operation Sequence Guided Fuzzing

Jiang,
Wen,
Qin
2024
Theoretical Aspects of Software Engineering
0
0
0
0
View full textAdd to dashboardCite

CtxFuzz: Discovering Heap-Based Memory Vulnerabilities Through Context Heap Operation Sequence Guided Fuzzing

Jiang,
Wen,
Qin
2024
Theoretical Aspects of Software Engineering
0
0
0
0
View full textAdd to dashboardCite

A Hybrid Vulnerability Analysis Tool Using a Risk Evaluation Technique

Park
1
,
Choo
2
,
Lee
3
2018
Wireless Pers Commun
3
0
4
0
View full textAdd to dashboardCite

Heap Vulnerability Exploitation Techniques on the Linux Platform: An Overview

Du,
Li,
Li
2024
2024 9th International Conference on Signal and Image Processing (ICSIP)
0
0
0
0
View full textAdd to dashboardCite
scite logo

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Product
Browser ExtensionAssistant by sciteCitation Statement SearchReference CheckVisualizationsDashboardsExplore JournalsExplore OrganizationsExplore FundersEmbedding BadgeEmbedding Citation SearchPricing
Resources
BlogHelp & FAQAccessibility StatementAPI TermsFor Universities & GovernmentsFor ResearchersFor PublishersFor Corporate, Pharma & EnterpriseAuthor MarketingBecome an AffiliateGet an organization trial or quotescite Data & Services
About
News & PressCareersRead our PaperCoverage

BlogTerms and ConditionsAPI TermsPrivacy PolicyContactCookie PreferencesDo Not Sell or Share My Personal Information

Copyright © 2024 scite LLC. All rights reserved.

Made with 💙 for researchers

Part of the Research Solutions Family.