A buffer overflow vulnerability automatic utilization method based on path analysis

Abstract

The invention discloses a buffer overflow vulnerability automatic utilization method based on path analysis. The method comprises the following steps: S1, acquiring program information of a target binary program; S2, traversing the target binary program according to the obtained program information by using a symbol execution method, searching the software vulnerability existing in the program, and obtaining the path information of the searched software vulnerability; S3, acquiring the environmental information of current system, and according to the acquired environmental information and theprogram information, generating the required utilization protocol to bypass the system protection; S4, according to the path information of the software vulnerability and the generated exploit specification, obtaining a solution, and finally generating the needed exploit input. The method has the advantages of simple realization, automatic searching of software vulnerability and automatic generation of vulnerability utilization, automatic bypass of system protection, high automation degree and execution efficiency.

Description

technical field [0001] The invention relates to the technical field of binary executable program vulnerability scanning, in particular to a method for automatically exploiting buffer overflow vulnerabilities based on path analysis. Background technique [0002] In recent years, with the rapid development of global informatization, computer software has become an important engine for the world's economic, technological, military and social development. At the same time, software security issues have become increasingly prominent. Software vulnerabilities are one of the root causes of information security issues. With the continuous development of the Internet and software technology, the number of software vulnerabilities is increasing, and the resulting damage is also increasing, which may cause problems including information theft, resource control, system crashes, etc., posing a major threat. [0003] In order to ensure the safe and effective operation of the program witho...

AI Technical Summary

Problems solved by technology

[0005] Exploitation of vulnerabilities means that attackers can execute arbitrary codes or leak user information by constructing abnormal input. The location and type of vulnerabilities can be provided by exploiting vulnerabilities, which is convenient for speeding up the discovery of vulnerabilities and the speed of patch repairs, thereby mitigating the vulnerability of the program. The damage caused by the vulnerability, and there is no effective way to exploit the vulnerability. Usually, the binary code is manually audited, and the target program is exploited by dynamic debugging, so it is difficult to accurately confirm the vulnerability. Locations and types of vulnerabilities exist, and vulnerabilities cannot be discovered and patched in time

Images