KVM PT Based Coverage Feedback Fuzzing for Network Key Devices

Abstract

With the advent of the network era, network security has attracted more and more attention. As the key node in the network, network key devices play an important role in protecting the internal network and ensuring the network security. For the vulnerability of network key devices, security analysis has become an important concern of security personnel. Fuzzing is an automatic and effective vulnerability mining technology. In this paper, we propose the first coverage feedback fuzzy testing framework based on KVM PT technology for network key devices, aiming to solve the feasibility of applying fuzzy tools in network critical devices. At the same time, a fuzzy test agent technology based on firmware modification is proposed to help speed up the call of testcases. We evaluated the framework on Cisco ASA firewall, and trigger CVE-2018-0101, which proves the effectiveness of the framework.