When stack protection does not protect the stack?

Pavel Dovgalyuk; Vladimir Makarov

doi:10.15514/ISPRAS-2016-28(5)-3

Труды Института системного программирования РАН (Oct 2018)

When stack protection does not protect the stack?

Pavel Dovgalyuk,
Vladimir Makarov

Affiliations

Pavel Dovgalyuk: Новгородский государственный университет
Vladimir Makarov: Новгородский государственный университет

DOI: https://doi.org/10.15514/ISPRAS-2016-28(5)-3
Journal volume & issue: Vol. 28, no. 5
pp. 55 – 72

Abstract

Read online

The majority of software vulnerabilities originate from buffer overflow. Techniques to eliminate buffer overflows and limit their damage include secure programming, source code audit, binary code audit, static and dynamic code generation features. Modern compilers implement compile-time and execution time protection schemes, that include variables reordering, inserting canary value, and separate stack for return addresses. Our research is targeted to finding the breaches in the compiler protection methods. We tested MSVC, gcc, and clang and found that two of these compilers have flaws that allow exploiting buffer overwrite under certain conditions.

Published in Труды Института системного программирования РАН

ISSN: 2079-8156 (Print); 2220-6426 (Online)
Publisher: Ivannikov Institute for System Programming of the Russian Academy of Sciences
Country of publisher: Russian Federation
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: https://ispranproceedings.elpub.ru/jour/index

About the journal

Abstract

Keywords