O. Kirch, "The poisoned NUL byte," post to the bugtraq mailing list, Oct. 1998. Home/Search Document Not in Database Summary Related Articles Check |
This paper is cited in the following contexts:
A First Step Towards Automated Detection of Buffer.. - Wagner, Foster.. (2000) (59 citations) (Correct)
....in real world applications. However, runtime testing seems likely to miss many vulnerabilities. Consider the following example: if (strlen(src) sizeof dst) break; strcpy(dst, src) Note that off by one errors in buffer management, such as the one shown above, have been exploited in the past [36, 48]. The fundamental problem with dynamic testing is that the code paths of greatest interest to a security auditor the ones which are never followed in ordinary operation are also the ones that are the hardest to analyze with dynamic techniques. Therefore, in this work we focus on static ....
O. Kirch, "The poisoned NUL byte," post to the bugtraq mailing list, Oct. 1998.
A First Step Towards Automated Detection of Buffer.. - Wagner, Foster.. (2000) (59 citations) (Correct)
....in real world applications. However, runtime testing seems likely to miss many vulnerabilities. Consider the following example: if (strlen(src) sizeof dst) break; strcpy(dst, src) Note that off by one errors in buffer management, such as the one shown above, have been exploited in the past [36, 48]. The fundamental problem with dynamic testing is that the code paths of greatest interest to a security auditor the ones which are never followed in ordinary operation are also the ones that are the hardest to analyze with dynamic techniques. Therefore, in this work we focus on static ....
O. Kirch, "The poisoned NUL byte," post to the bugtraq mailing list, Oct. 1998.
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC