Buffer Overrun Detection Using Linear Programming and Static Analysis

Ganapathy, Vinod; Jha, Somesh; Chandler, David; Melski, David; Vitek, David

File(s)

TR1488.pdf (3.200Mb)

Date

2003

Author

Ganapathy, Vinod

Jha, Somesh

Chandler, David

Melski, David

Vitek, David

Publisher

University of Wisconsin-Madison Department of Computer Sciences

Metadata

Show full item record

Abstract

This paper addresses the issue of identifiing buffer overrun vulnerabilities by statically analyzing C source code. We demonstrate a scalable analysis based on modeling C string manipulations as a linear program. We also present fast, scalable solvers based on linear programming, and demonstrate how to make the analysis context sensitive. Based on these techniques, we built a prototype and used it to identify several vulnerabilities in popular security critical applications.

Permanent Link

http://digital.library.wisc.edu/1793/60368

Type

Technical Report

Citation

TR1488

Part of

CS Technical Reports