NDLI: Automated Format String Attack Prevention for Win 32 / X 86 Binaries

Please wait, while we are loading the content...

Automated Format String Attack Prevention for Win 32 / X 86 Binaries

Content Provider	Semantic Scholar
Copyright Year	2007
Abstract	A format string attack exploits the fact that functions with a variable number of input arguments such as printf() determine the exact number of input arguments used in a call based on the format string argument, and compromises the victim application’s address space by accessing data areas beyond the original input argument list the caller prepares. Although there have been several attempts that aim to protect application programs from format string attacks, all of them are limited in one way or another. Moreover, none of them has been applied to commercially distributed Win32 binaries. This paper describes the design, implementation and evaluation of a Win32 binary transformation tool called Lisbon, which transparently inserts into Win32 binaries additional checks that protect them from all format string vulnerabilities announced in public security advisory lists. Lisbon casts the format string attack prevention problem as an input argument list bound checking problem. To reduce the run-time checking overhead, Lisbon exploits the debug register hardware, which is available in most mainstream CPUs including Intel’s X86 architecture, to detect if a callee accesses data outside the input argument list. Moreover, Lisbon is able to detect format string attacks without interpreting their format strings and is thus potentially applicable to similar attacks against other functions that access input arguments in the same way as printf(). The run-time throughput penalty of the first Lisbon prototype is under 2% for a set of test network applications that are known to be vulnerable to format string attacks.
File Format	PDF HTM / HTML
Alternate Webpage(s)	http://www.ecsl.cs.sunysb.edu/tr/TR244.pdf
Language	English
Access Restriction	Open
Subject Keyword	Address space Binary code Binary file Buffer overflow Buffers CASP8 and FADD-Like Apoptosis Regulator Protein Caller ID Cash Central processing unit Checking (action) Compiler Integer (number) Integer overflow Memory Disorders Memory corruption Microsoft Windows Overhead (computing) Printf format string Prototype Runtime error detection Source Code Throughput Uncontrolled format string X86 debug register
Content Type	Text
Resource Type	Article

Central Library (ISO-9001:2015 Certified)
Indian Institute of Technology Kharagpur
Kharagpur, West Bengal, India | PIN - 721302

See location in the Map
03222 282435
Mail: support@ndl.gov.in

Sl.	Authority	Responsibilities	Communication Details
1	Ministry of Education (GoI), Department of Higher Education	Sanctioning Authority	https://www.education.gov.in/ict-initiatives
2	Indian Institute of Technology Kharagpur	Host Institute of the Project: The host institute of the project is responsible for providing infrastructure support and hosting the project	https://www.iitkgp.ac.in
3	National Digital Library of India Office, Indian Institute of Technology Kharagpur	The administrative and infrastructural headquarters of the project	Dr. B. Sutradhar bsutra@ndl.gov.in
4	Project PI / Joint PI	Principal Investigator and Joint Principal Investigators of the project	Dr. B. Sutradhar bsutra@ndl.gov.in Prof. Saswat Chakrabarti will be added soon
5	Website/Portal (Helpdesk)	Queries regarding NDLI and its services	support@ndl.gov.in
6	Contents and Copyright Issues	Queries related to content curation and copyright issues	content@ndl.gov.in
7	National Digital Library of India Club (NDLI Club)	Queries related to NDLI Club formation, support, user awareness program, seminar/symposium, collaboration, social media, promotion, and outreach	clubsupport@ndl.gov.in
8	Digital Preservation Centre (DPC)	Assistance with digitizing and archiving copyright-free printed books	dpc@ndl.gov.in
9	IDR Setup or Support	Queries related to establishment and support of Institutional Digital Repository (IDR) and IDR workshops	idr@ndl.gov.in