摘要
通过对C源代码的静态分析,将源代码中存在缓冲区溢出缺陷的库函数替换为增加了边界检查的包裹函数, 有效地检测和处理堆栈缓冲区溢出攻击。
This paper presents a method that statically detects C source code and substitutes bounds-checked wrapper functions for the functions that have buffer overflow vulnerabilities. In this way, it can prevent stack-smashing attack effectively.
出处
《计算机工程》
CAS
CSCD
北大核心
2004年第4期110-111,131,共3页
Computer Engineering
关键词
缓冲区溢出
堆栈溢出攻击
包裹函数
Buffer overflow
Stack-smashing attack
Wrapper function