TY - JOUR
T1 - A tool for visualizing buffer overflow with detecting return address overwriting
AU - Sasano, Isao
N1 - Funding Information:
We would like to thank the anonymous referees for many helpful comments. The idea of visualizing buffer overflow was presented and a tool was implemented based on the idea in Bachelor’s thesis of Koji Okada [7] and Takahiro Ogawa [5] under the supervision of the author. This work was partially supported by JSPS KAKENHI Grant Number 25730047.
Publisher Copyright:
© 2016 ICST.
PY - 2015
Y1 - 2015
N2 - Buffer overflow is a serious problem when the software is run as a server on the internet. Especially when the return addresses are overwritten intentionally, the control flow may be changed as the attacker intends. Although there have been proposed several ways to protect attacks that utilize the buffer overflow, the number of the errors owing to the buffer overflow have been increasing gradually. This paper presents a tool that visualizes the buffer overflow when executing programs in C language, especially when the return addresses are overwritten. The functionality is mainly targeted at beginners of C programming who do not recognize the attacks, which we expect makes the number of errors decrease in the future.
AB - Buffer overflow is a serious problem when the software is run as a server on the internet. Especially when the return addresses are overwritten intentionally, the control flow may be changed as the attacker intends. Although there have been proposed several ways to protect attacks that utilize the buffer overflow, the number of the errors owing to the buffer overflow have been increasing gradually. This paper presents a tool that visualizes the buffer overflow when executing programs in C language, especially when the return addresses are overwritten. The functionality is mainly targeted at beginners of C programming who do not recognize the attacks, which we expect makes the number of errors decrease in the future.
KW - Buffer overflow
KW - C language
KW - Debuggers
KW - GUI
KW - Integrated development environment
KW - Visualization
UR - http://www.scopus.com/inward/record.url?scp=85052174390&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85052174390&partnerID=8YFLogxK
U2 - 10.4108/eai.3-12-2015.2262495
DO - 10.4108/eai.3-12-2015.2262495
M3 - Conference article
AN - SCOPUS:85052174390
SN - 2411-6777
JO - EAI International Conference on Bio-inspired Information and Communications Technologies (BICT)
JF - EAI International Conference on Bio-inspired Information and Communications Technologies (BICT)
T2 - 9th EAI International Conference on Bio-Inspired Information and Communications Technologies, BICT 2015
Y2 - 3 December 2015 through 5 December 2015
ER -