Dowser: A Guided Fuzzer for Finding Buffer Overflow Vulnerabilities.
;login:(2013)
摘要
Herbert Bos is a full professor in Systems and Network Security at Vrije Universiteit Amsterdam. He obtained his PhD from Cambridge University Computer Laboratory (UK). He is proud of all his (former) students, three of whom have won the Roger Needham PhD Award for best PhD thesis in systems in Europe. In 2010, Herbert was awarded an ERC Starting Grant for a project on reverse engineering that is currently keeping him busy. herbertb@few.vu.nl Buffer overflows have long plagued existing software systems, making them vulnerable to attackers. Our tool, Dowser, aims to tackle this issue using efficient and scalable software testing. Dowser builds on a new software testing paradigm, which we call dowsing, that focuses the testing effort around relevant application components. This paradigm proved successful in practice, as Dowser found real bugs in complex applications such as the nginx Web server and the ffmpeg multimedia framework.
更多查看译文
关键词
buffer overflow vulnerabilities,guided fuzzer,dowser
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络