Research on Software Vulnerability Testing Based on Function-Call

Fanping Zeng,Minghui Chen,Kaitao Yin,Xufa Wang
DOI: https://doi.org/10.1109/cmc.2009.141
2009-01-01
Abstract:On the basis of analyzing the safety formulas for various types of vulnerabilities, this paper presents a novel method for software vulnerability testing, which uses source-code conversion and the state information of function-call to test the vulnerability of software. This method could cover a variety of vulnerabilities. The implementation shows that it can check the attack of buffer overflow accurately, on the occasions of no large losses in performance.
What problem does this paper attempt to address?