Research on Detection of Vulnerability-Exploiting Technology Heap Spray

刘磊,王轶骏,薛质
DOI: https://doi.org/10.3969/j.issn.1009-8054.2012.06.032
2012-01-01
Abstract:Heap Spray, as a very popular vulnerability-exploiting technology in recent years, is widely-used in the attacks against the browser. This technology greatly reduces the difficulty in address jump after the buffer overflow and significantly improves the success rate of buffer overflow attacks. This paper, through analysis on the principle of Heap Spray technology, gives some technical details. Then the existing detection technologies are divided into three types, including detection based on string, detection based on memory protection, and detection based on system call. And these detections are expounded with some typical examples.
What problem does this paper attempt to address?