| 针对ELF文件缓冲区溢出漏洞的检测技术 |
| |
| 引用本文: | 景新宇,陈让宽,吴邦欲.针对ELF文件缓冲区溢出漏洞的检测技术[J].计算机工程,2005,31(21):124-126. |
| |
| 作者姓名: | 景新宇 陈让宽 吴邦欲 |
| |
| 作者单位: | 清华大学软件学院,北京,100084 |
| |
| 基金项目: | 国家“863”高科技基金资助项目(2003AA148020,2003AA414031) |
| |
| 摘 要: | 缓冲区溢出漏洞是一种常见的安全漏洞。文章介绍了缓冲区溢出漏洞的现状,评价了典型的缓冲区溢出漏洞检测技术,提出了一种针对ELF格式文件潜在缓冲区溢出漏洞的检测技术,并在此基础上提出了一个应用实例。
|
| 关 键 词: | ELF 缓冲区溢出 动态链接库 |
| 文章编号: | 1000-3428(2005)21-0124-03 |
| 收稿时间: | 2004-09-22 |
| 修稿时间: | 2004-09-22 |
Detecting Technique for ELF File's Buffer Overflow Vulnerability |
| |
| JING Xinyu,CHEN Rangkuan,WU Bangyu.Detecting Technique for ELF File''''s Buffer Overflow Vulnerability[J].Computer Engineering,2005,31(21):124-126. |
| |
| Authors: | JING Xinyu CHEN Rangkuan WU Bangyu |
| |
| Affiliation: | School of Software. Tsinghua University, Beijing 100084 |
| |
| Abstract: | Buffer overflow vulnerability is a common security threat. This article introduces the current state of buffer overflow vulnerability, appraises typical techniques against buffer overflow vulnerability and exploitation, and presents a new detecting approach to buffer overflow vulnerability potentially existing in ELF files and an application instance based on it. |
| |
| Keywords: | Executable and linkable format(ELF) Buffer overflow Dynamic link libraries |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
