IntFinder: automatically detecting integer bugs in x86 binary program

Authors:
Ping Chen;Hao Han;Yi Wang;Xiaobin Shen;Xinchun Yin;Bing Mao;Li Xie
Affiliations:
State Key Laboratory for Novel Software Technology, Department of Computer Science and Technology, Nanjing University, Nanjing;State Key Laboratory for Novel Software Technology, Department of Computer Science and Technology, Nanjing University, Nanjing;State Key Laboratory for Novel Software Technology, Department of Computer Science and Technology, Nanjing University, Nanjing;College of Information Engineering, Yangzhou University, Yangzhou Jiangsu, China;College of Information Engineering, Yangzhou University, Yangzhou Jiangsu, China;State Key Laboratory for Novel Software Technology, Department of Computer Science and Technology, Nanjing University, Nanjing;State Key Laboratory for Novel Software Technology, Department of Computer Science and Technology, Nanjing University, Nanjing
Venue:
ICICS'09 Proceedings of the 11th international conference on Information and Communications Security
Year:
2009

Citing 8
Cited 2

LCLint: a tool for using specifications to check code

SIGSOFT '94 Proceedings of the 2nd ACM SIGSOFT symposium on Foundations of software engineering
Computer organization and architecture (4th ed.): designing for performance

Computer organization and architecture (4th ed.): designing for performance
CCured: type-safe retrofitting of legacy code

POPL '02 Proceedings of the 29th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Cyclone: A Safe Dialect of C

ATEC '02 Proceedings of the General Track of the annual conference on USENIX Annual Technical Conference
Pin: building customized program analysis tools with dynamic instrumentation

Proceedings of the 2005 ACM SIGPLAN conference on Programming language design and implementation
Using Valgrind to detect undefined value errors with bit-precision

ATEC '05 Proceedings of the annual conference on USENIX Annual Technical Conference
Flow-insensitive static analysis for detecting integer anomalies in programs

SE'07 Proceedings of the 25th conference on IASTED International Multi-Conference: Software Engineering
Dynamic test generation to find integer bugs in x86 binary linux programs

SSYM'09 Proceedings of the 18th conference on USENIX security symposium

A systematic literature review of actionable alert identification techniques for automated static code analysis

Information and Software Technology
Improving integer security for systems with KINT

OSDI'12 Proceedings of the 10th USENIX conference on Operating Systems Design and Implementation

Quantified Score

Hi-index	0.00

Visualization

Abstract

Recently, Integer bugs have been increasing sharply and become the notorious source of bugs for various serious attacks. In this paper, we propose a tool, IntFinder, which can automatically detect Integer bugs in a x86 binary program. We implement IntFinder based on a combination of static and dynamic analysis. First, IntFinder decompiles a x86 binary code, and creates the suspect instruction set. Second, IntFinder dynamically inspects the instructions in the suspect set and confirms which instructions are actual Integer bugs with the error-prone input. Compared with other approaches, IntFinder provides more accurate and sufficient type information and reduces the instructions which will be inspected by static analysis. Experimental results are quite encouraging: IntFinder has detected the integer bugs in several practical programs as well as one new bug in slocate-2.7, and it achieves a low false positives and negatives.