Skip to main content
SpringerLink
Log in

An Approach to Vulnerability Searching of Integer Overflows in the Executable Program Code

  • Published:
Automatic Control and Computer Sciences Aims and scope Submit manuscript

Abstract

This article proposes an approach to identifying integer overflow vulnerabilities in software represented by the executable code of x86 architecture. The approach is based on symbolic code execution and initially twofold representation of memory cells. A truncated control transfer graph is constructed from the machine code of the program, the paths in which are layer-by-layer checked for the feasibility of the vulnerability conditions. The proposed methods were implemented in practice and experimentally tested on the various code samples.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Fig. 1.
Fig. 2.
Fig. 3.
Fig. 4.

Similar content being viewed by others

REFERENCES

  1. Pechenkin, A.I. and Lavrova, D.S., Modeling the search for vulnerabilities via the fuzzing method using an automation representation of network protocols, Autom. Control Comput. Sci., 2015, vol. 49, no. 8, pp. 826–833.

  2. Pechenkin, A.I. and Nikolskiy, A.V., Architecture of a scalable system of fuzzing network protocols on a multiprocessor cluster, Autom. Control Comp. Sci., 2015, vol. 49, no. 8, pp. 758–765.

  3. Godefroid, P., Microsoft Research, Fuzzing @ Microsoft—A Research Perspective, ACSC 2017.

  4. Boyer, R.S., Elspas, B., and Levitt, K.N., SELECT—a formal system for testing and debugging programs by symbolic execution, Proceedings of the International Conference on Reliable Software, Los Angeles, 1975, pp. 234–245.

  5. King, J.C., Symbolic execution and program testing, Commun. ACM, 1976, vol. 19, no. 7.

  6. Prateek Saxena, Pongsin Poosankam, Stephen McCamant, and Dawn Song, Loop-extended symbolic execution on binary programs, Proceedings of the ACM/SIGSOFT International Symposium on Software Testing and Analysis (ISSTA), 2009.

  7. Chipounov, V., Georgescu, V., Zamfir, C., and Candea, G., Selective symbolic execution, Proceedings of the 5th Workshop on Hot Topics in System Dependability (HotDep), Lisbon, 2009.

  8. Stephens, N., Grosen, J., Salls, C., Dutcher, A., Wang, R., Corbetta, J., Shoshitaishvili, Y., Kruegel, C., and Vigna, G., Driller: Augmenting fuzzing through selective symbolic execution, Network and Distributed System Security Symposium, 2016.

  9. Sang Kil Cha, Avgerinos, T., Rebert, A., and Brumley, D., Unleashing Mayhem on binary code, 2012 IEEE Symposium on Security and Privacy, 2012.

Download references

Author information

Authors and Affiliations

  1. Peter the Great St.Petersburg Polytechnic University, 195251, Saint-Petersburg, Russia

    R. A. Demidov, A. I. Pechenkin & P. D. Zegzhda

Authors
  1. R. A. Demidov
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. A. I. Pechenkin
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. P. D. Zegzhda
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding authors

Correspondence to R. A. Demidov or A. I. Pechenkin.

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Demidov, R.A., Pechenkin, A.I. & Zegzhda, P.D. An Approach to Vulnerability Searching of Integer Overflows in the Executable Program Code. Aut. Control Comp. Sci. 52, 1022–1028 (2018). https://doi.org/10.3103/S0146411618080102

Download citation

  • Received:

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.3103/S0146411618080102

Keywords:

Search

Navigation