Automated Exploit Generation for Control-Flow
Hijacking Attacks
Student : Po-Yen Huang Advisor : Dr. Shih-Kun Huang
Institute of Computer Science and Engineering
National Chiao Tung University
Abstract
Due to the rapid deployment of information technology, the threats on in-
formation assets are getting more serious. These threats are originated from
software vulnerabilities. The vulnerabilities bring about attacks. If attacks
launched before the public exposure of the targeted vulnerability, they are
called zero-day attacks. These attacks usually damage system and economy
seriously. We have analyzed the process of zero-day attacks in the perspec-
tive of software process and recognize that it is a race competition between
attacks and software patch development and deployment. If developers can
fix the vulnerabilities as soon as possible, the threats will be significantly
reduced. In order to faster the vulnerability finding process, we use the soft-
ware testing techniques, focusing on finding bugs automatically. However,
it is still hard to locate security vulnerabilities from a large number of bugs.
In our paper, we switch to the roles of attackers and aim at generating at-
tacks automatically to prove that a bug is a security vulnerability. Based
on symbolic execution, we are able to automatically generate exploit for
control-flow hijacking attacks and perform several experiments with real-
world programs to prove our method is feasible.
ii
评论0