A technique to locate control-flow hijacking point for vulnerability exploitation based on jump-oriented features

Junxiu Li; Chao Feng; Chaojing Tang

doi:10.1117/12.3038067

22 August 2024 A technique to locate control-flow hijacking point for vulnerability exploitation based on jump-oriented features

Junxiu Li, Chao Feng, Chaojing Tang

Author Affiliations +

Proceedings Volume 13228, Fifth International Conference on Computer Communication and Network Security (CCNS 2024); 132281I (2024) https://doi.org/10.1117/12.3038067
Event: Fifth International Conference on Computer Communication and Network Security (CCNS 2024), 2024, Guangzhou, China

Abstract

Vulnerability is an important threat to current cyberspace security, and the vulnerability exploitation code is the carrier for attackers to attack information systems through vulnerabilities. By analyzing the exploit code, security personnel can understand the vulnerability location of the information system and the common exploitation techniques used by attackers, which is of great significance to cyberspace defense. In the common arbitrary code execution and other vulnerability exploitation code, the control-flow hijacking point is the key location where the attacker uses the vulnerability to modify the execution process of the program. Locating the control-flow hijacking point can provide insight into the attacker's exploitation path and can help security personnel formulate a more complete vulnerability defense strategy. This paper proposes a method to locate the control-flow hijacking point of vulnerability exploitation based on jump-oriented features. The algorithm analyzes the program's jump-oriented features during indirect jumps, invocations and function returns, and detects and locates the control-flow hijacking point of vulnerability exploitation based on the different jump-oriented features. The experimental results of five real vulnerability exploitation cases show that the method in this paper achieves good results on the real vulnerability exploitation cases and has a high degree of accuracy and performance.

(2024) Published by SPIE. Downloading of the abstract is permitted for personal use only.

Citation Download Citation

Junxiu Li, Chao Feng, and Chaojing Tang "A technique to locate control-flow hijacking point for vulnerability exploitation based on jump-oriented features", Proc. SPIE 13228, Fifth International Conference on Computer Communication and Network Security (CCNS 2024), 132281I (22 August 2024); https://doi.org/10.1117/12.3038067

ACCESS THE FULL ARTICLE

INSTITUTIONAL
Select your institution to access the SPIE Digital Library.

SELECT YOUR INSTITUTION

PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.

PERSONAL SIGN IN

No SPIE Account? Create one

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $17.00

Non-members: $21.00 ADD TO CART

PROCEEDINGS
7 PAGES

DOWNLOAD PAPER SAVE TO MY LIBRARY

GET CITATION

RIGHTS & PERMISSIONS

Get copyright permission Get copyright permission on Copyright Marketplace

KEYWORDS

Defense and security

Control systems

Detection and tracking algorithms

Prototyping

Computer security

Analytical research

Information security

Show All Keywords

Keywords/Phrases

Search In:

Publication Years