Citations: Buffer Overflows: attacks and defenses for the vulnerability of the decade - Cowan, an, Pu, Beattie, Walpole (ResearchIndex)

29 citations found. Retrieving documents...

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole. Buffer overflows: Attacks and defenses for the vulnerability of the decade. In Proceedings of DARPA Information Survivability Conference and Exposition (DISCEX 2000.

Home/Search Document Not in Database Summary Related Articles Check

This paper is cited in the following contexts:

First 50 documents

Testing C Programs for Buffer Overflow Vulnerabilities - Haugh, Bishop (2003) (Correct)

....widely used, open source software packages. This evaluation shows that the tool is useful for finding buffer overflow flaws, that it has a low false positive rate, and compares well with other techniques. 1 Introduction Buffer overflow vulnerabilities are one of the most common security flaws [6]. Over the past few years, they have accounted for up to 50 of the advisories issued by CERT, demonstrating just how serious the issue is. The infamous Internet worm of 1988 exploited a buffer overflow vulnerability in the fingerd(8) server program[8] A buffer overflow flaw typically results ....

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole. Buffer overflows: Attacks and defenses for the vulnerability of the decade. In Proceedings of the DARPA Information Survivability Conference and Expo, 1999.

Anomaly Detection Using Call Stack Information - Feng, Kolesnikov, Fogla, Lee.. (2003) (11 citations) (Correct)

....intrusion traces. This may suggest the attacks they chose are inherently easy to detect. So although Wespi s method generated higher looking scores, this does not necessarily mean it works better. Cowan et al. proposed a method, called StackGuard, to detect and prevent buffer overflow attacks [2, 3]. StackGuard is a compiler technique for providing code pointer integrity checking to the return address. The basic idea is to place a canary word next to the return address on the stack, and check if this word was modified before the function returns. This is a good idea and may work well with ....

C. Cowan, P. Wagle, C. Pu, S. Beattie and J. Walpole, "Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade", DARPA Information Survivability Conference and Expo, Hilton Head Island, SC, 2000.

A Java Operating System as the Foundation of a.. - Golm, Felser.. (Correct)

.... strings that contain commands thus allowing the user to run arbitrary commands with root privilege [10] 11] one executes commands in emails [12] and one is an integer overflow [13] The six buffer overflow vulnerabilities could have been avoided by using techniques described by Cowan et al. [15]. However, not all overflow attacks can be detected and the authors recommend the use of a typesafe language. An argument that is often raised against type safe systems and software protection is that the compiler must be trusted. We think that this is not a very strong argument for the following ....

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole. Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade. In DARPA Information Survivability Conference and Expo (DISCEX), Jan. 2000. 14

A Comparison of Publicly Available Tools for Dynamic Buffer.. - Wilander, Kamkar (2003) (6 citations) (Correct)

....frame to use. Lower address Local variables Old base pointer Return address Arguments Higher address Figure 3. The UNIX stack frame. 2.3 Attack Targets As stated above the target for a successful change of control flow is a code pointer. There are three types of code pointers to attack [11]. But Hiroaki Etoh and Kunikazu Yoda propose using the old base pointer as an attack target [15] We have implemented their proposed attack form and proven that the old base pointer is just as dangerous a target as the return address (see section 2.4 and 4) So we have four attack targets: 1. The ....

....is the most popular and unlike function pointers and longjmp buffers, the return address is always present. According to Cowan s e mail and a WireX paper a better solution is on its way called PointGuard which will protect the integrity of pointers in general with the same kind of canary solution [11]. This implies that PointGuard will protect against all attack forms overflowing pointers (See attack forms 3a f and 4a f in section 4) StackGuard is available for download at http: www.immunix.org 3.4 Stack Shield Stack Shield is a compiler patch for GCC made by Vendicator [33] In the ....

[Article contains additional citation context not shown here]

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole. Buffer overflows: Attacks and defenses for the vulnerability of the decade. In Proceedings of the DARPA Information Survivability Conference and Expo (DISCEX), pages 119--129, Hilton Head, South Carolina, January 2000.

PointGuard™: Protecting Pointers from Buffer.. - Cowan, Beattie.. (2003) Self-citation (Cowan Wagle Beattie) (Correct)

No context found.

Crispin Cowan, Perry Wagle, Calton Pu, Steve Beattie, and Jonathan Walpole. Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade. In DARPA Information Survivability Conference and Expo (DISCEX), January 2000.

USENIX Association - Th Usenix Security (1992) (2 citations) Self-citation (Cowan Beattie) (Correct)

RaceGuard: Kernel Protection from Temporary File.. - Cowan, Beattie.. (2001) (6 citations) Self-citation (Cowan Beattie) (Correct)

....against such a straw man, we felt it necessary to get repeatable experiments. We view the above concessions as largely immaterial to the validity of RaceGuard defense, because they only make the programs more vulnerable. However, it is interesting to note that while exploits for buffer overflow [10], format bug [6] and CGI [8] vulnerabilities are readily available, exploits for race vulnerabilities are extremely rare. We conjecture that the relative scarcity of race exploits is related to the relative difficulty in successfully deploying race attacks: script kiddies aren t interested in ....

Crispin Cowan, Perry Wagle, Calton Pu, Steve Beattie, and Jonathan Walpole. Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade. In DARPA Information Survivability Conference and Expo (DISCEX), January 2000.

Defcon Capture the Flag: Defending Vulnerable Code .. - Cowan, Arnold.. (2003) (4 citations) Self-citation (Cowan Beattie) (Correct)

....recount the progress of the game. 3 Our Entry: Immunix Our entry in the CtF game was an Immunix server. Immunix is a security hardened version of Linux, protected with the following technologies: StackGuard: A C compiler enhancement [8] that emits programs resistant to buffer overflow attacks [16, 9]. This technology was developed under DARPA contracts F30602 96 1 0331 (Immunix) F30602 96 10302 (Heterodyne) and F30602 01 C 0172 (Sardonix) FormatGuard: A similar C compilation technique [4] that emits programs resistant to printf format string vulnerabilities [18, 2, 15] This technology ....

Crispin Cowan, Perry Wagle, Calton Pu, Steve Beattie, and Jonathan Walpole. Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade. In DARPA Information Survivability Conference and Expo (DISCEX), January 2000.

BIND: A Fine-grained Attestation Service for - Secure Distributed Systems (Correct)

No context found.

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole. Buffer overflows: Attacks and defenses for the vulnerability of the decade. In Proceedings of DARPA Information Survivability Conference and Exposition (DISCEX 2000.

Runtime Execution Monitoring (REM) to Detect and Prevent.. - Fiskiran, Lee (Correct)

No context found.

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole, "Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade", Proc. DARPA Information Survivability Conference and Exposition (DISCEX), vol. 2, pp. 119-129, Jan. 2000.

Type-Assisted Dynamic Buffer Overflow Detection - Lhee, Chapin (2002) (11 citations) (Correct)

No context found.

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole. Buffer overflows: Attacks and defenses for the vulnerability of the decade. In Proceedings DARPA Information Survivability Conference and Exposition, pages 119--129, Hilton Head, SC, Jan. 2000.

Automation for Exception Freedom Proofs - Bill Ellis And (2003) (Correct)

No context found.

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole. Buffer overflows: Attacks and defenses for the vulnerability of the decade. In DARPA Information Survivability Conference and Expo (DISCEX). 2000.

Analyzing Network Traffic to Detect E-Mail Spamming Machines - Prasanna Desikan And (2004) (Correct)

No context found.

C.Cowan, P.Wagle, C.Pu, S.Beattie, and J. Walpole, "Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade", DARPA Information Survivability Conference and Expo (DISCEX), Hilton Head Island SC, January 2000.

A Hierarchical Protection Model for Protecting against.. - Shinagawa, Kono, Masuda (2003) (Correct)

No context found.

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole, "Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade," in DARPA Information Survivability Conference and Exposition, pp. 1119--1129, Jan. 2000.

Implementing A Secure Setuid Program - Shinagawa, Kono (2004) (Correct)

Reliable Identification of Bounded-length Viruses is NP-complete - Spinellis (2003) (3 citations) (Correct)

No context found.

Crispan Cowan, Perry Wagle, Calton Pu, Steve Beattie, and Jonathan Walpole, "Buffer overflows: Attacks and defenses for the vulnerability of the decade," in Proceedings of the DARPA Information Survivability Conference and Exposition, Hilton Head, SC, USA, Jan. 2000, DARPA, pp. 119--129.

A Practical Dynamic Buffer Overflow Detector - Olatunji Ruwase Transmeta (2004) (10 citations) (Correct)

No context found.

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole. Buffer overflows: Attacks and defenses for vulnerability of the decade. In Proceedings of DARPA Information Survivability Conference and Exposition, pages 119--129, January 2000.

An Overview of Common Programming Security Vulnerabilities and.. - Younan (2003) (Correct)

No context found.

Crispin Cowan, Perry Wagle, Calton Pu, Steve Beattie, and Jonathan Walpole. Buffer overflows: Attacks and defenses for the vulnerability of the decade. [dar00].

Secure Programming Group - Using Splint To (Correct)

No context found.

Crispin Cowan, Perry Waggle, Calton Pu, Steve Beattie, and Jonathan Walpole. Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade. DARPA Information Survivability Conference and Exposition. January 2000.

Randomized Instruction Set Emulation to Disrupt.. - Barrantes, Ackley, .. (2003) (16 citations) (Correct)

Randomized Instruction Set Emulation - To Disrupt Binary (2003) (Correct)

No context found.

COWAN, C., WAGLE, P., PU, C., BEATTIE, S., AND WALPOLE, J. Buffer overflows: Attacks and defenses for the vulnerability of the decade. In DARPA Information Survivability Conference and Exposition (DISCEX 2000.

Multiple Self-Organizing Maps - For Intrusion Detection (2000) (Correct)

No context found.

Crispin Cowan, Perry Wagle, Calton Pu, Steve Beattie, and Jonathan Walpole. Buffer overflows: Attacks and defenses for the vulnerability of the decade. In Proceedings of DARPA Information Survivability Conference and Expo, 1999.

Model Checking Reconfigurable Processor Configurations.. - Cochran, Kapur.. (Correct)

A Tamper-Resistant Framework for Unambiguous Detection.. - Chinchani, Upadhyaya.. (Correct)

Security Issues for Internet Appliances - Stajano, Isozaki (2002) (Correct)

No context found.

C. Cowan, P. Wagle, C. Pu, S. Beattie, and J. Walpole. Buffer overflows: Attacks and defenses for the vulnerability of the decade. In Proceedings of the DARPA Information Survivability Conference & Exposition Volume II of II. IEEE, 1998. http://dlib.computer.org/ conferen/discex/0490/pdf/04901119.pdf. Access to the URL requires subscription.

First 50 documents

Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback

CiteSeer.IST - Copyright Penn State and NEC