A Comparison of Publicly Available Tools for Dynamic Buffer Overflow Prevention
2003 (English)In: Proceedings of the 10th Network and Distributed System Security Symposium, 2003, Reston, Virginia, USA: Internet Society , 2003, 149- p.Conference paper (Refereed)
The size and complexity of software systems is growing, increasing the number of bugs. Many of these bugs constitute security vulnerabilities. Most common of these bugs is the buffer overflow vulnerability. In this paper we implement a testbed of 20 different buffer overflow attacks, and use it to compare four publicly available tools for dynamic intrusion prevention aiming to stop buffer overflows. The tools are compared empirically and theoretically. The best tool is effective against only 50% of the attacks and there are six attack forms which none of the tools can handle.
Place, publisher, year, edition, pages
Reston, Virginia, USA: Internet Society , 2003. 149- p.
Security intrusion; buffer overflow; intrusion prevention; dynamic analysis
IdentifiersURN: urn:nbn:se:liu:diva-29495Local ID: 14850OAI: oai:DiVA.org:liu-29495DiVA: diva2:250310
The 10th Network & Distributed System Security Symposium 2003 (NDSS), San Diego, California, USA