用于JIT编译器的自动漏洞生成框架

Proceedings of the 2021 Research on offensive and defensive techniques in the Context of Man At The End (MATE) Attacks Pub Date : 2021-11-15 DOI:10.1145/3465413.3488573

Xiyu Kang, S. Debray

{"title":"用于JIT编译器的自动漏洞生成框架","authors":"Xiyu Kang, S. Debray","doi":"10.1145/3465413.3488573","DOIUrl":null,"url":null,"abstract":"This paper proposes a framework for automatic exploit generation in JIT compilers, focusing in particular on heap corruption vulnerabilities triggered by dynamic code, i.e., code generated at runtime by the JIT compiler. The purpose is to help assess the severity of vulnerabilities and thereby assist with vulnerability triage. The framework consists of two components: the first extracts high-level representations of exploitation primitives from existing exploits, and the second uses the primitives so extracted to construct exploits for new bugs. We are currently building a prototype implementation of the framework focusing on JavaScript JIT compilers. To the best of our knowledge, this is the first proposal to consider automatic exploit generation for code generated dynamically by JIT compilers.","PeriodicalId":400156,"journal":{"name":"Proceedings of the 2021 Research on offensive and defensive techniques in the Context of Man At The End (MATE) Attacks","volume":"46 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-11-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"A Framework for Automatic Exploit Generation for JIT Compilers\",\"authors\":\"Xiyu Kang, S. Debray\",\"doi\":\"10.1145/3465413.3488573\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper proposes a framework for automatic exploit generation in JIT compilers, focusing in particular on heap corruption vulnerabilities triggered by dynamic code, i.e., code generated at runtime by the JIT compiler. The purpose is to help assess the severity of vulnerabilities and thereby assist with vulnerability triage. The framework consists of two components: the first extracts high-level representations of exploitation primitives from existing exploits, and the second uses the primitives so extracted to construct exploits for new bugs. We are currently building a prototype implementation of the framework focusing on JavaScript JIT compilers. To the best of our knowledge, this is the first proposal to consider automatic exploit generation for code generated dynamically by JIT compilers.\",\"PeriodicalId\":400156,\"journal\":{\"name\":\"Proceedings of the 2021 Research on offensive and defensive techniques in the Context of Man At The End (MATE) Attacks\",\"volume\":\"46 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-11-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 2021 Research on offensive and defensive techniques in the Context of Man At The End (MATE) Attacks\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3465413.3488573\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2021 Research on offensive and defensive techniques in the Context of Man At The End (MATE) Attacks","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3465413.3488573","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

本文提出了一个在JIT编译器中自动生成漏洞的框架，特别关注由动态代码(即JIT编译器在运行时生成的代码)触发的堆损坏漏洞。目的是帮助评估漏洞的严重性，从而帮助进行漏洞分类。该框架由两个组件组成:第一个组件从现有漏洞中提取利用原语的高级表示，第二个组件使用提取的原语构建针对新漏洞的漏洞。我们目前正在构建一个框架的原型实现，重点放在JavaScript JIT编译器上。据我们所知，这是第一个考虑对JIT编译器动态生成的代码进行自动利用生成的建议。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A Framework for Automatic Exploit Generation for JIT Compilers

This paper proposes a framework for automatic exploit generation in JIT compilers, focusing in particular on heap corruption vulnerabilities triggered by dynamic code, i.e., code generated at runtime by the JIT compiler. The purpose is to help assess the severity of vulnerabilities and thereby assist with vulnerability triage. The framework consists of two components: the first extracts high-level representations of exploitation primitives from existing exploits, and the second uses the primitives so extracted to construct exploits for new bugs. We are currently building a prototype implementation of the framework focusing on JavaScript JIT compilers. To the best of our knowledge, this is the first proposal to consider automatic exploit generation for code generated dynamically by JIT compilers.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 2021 Research on offensive and defensive techniques in the Context of Man At The End (MATE) Attacks

自引率

0.00%

发文量