The Center for Education and Research in Information Assurance and Security (CERIAS)

The Center for Education and Research in
Information Assurance and Security (CERIAS)
Center for Education and Research in Information Assurance and Security

FormatGuard: Automatic Protection From printf Format String Vulnerabilites

Author

Cowan, C., Barringer, M., Beattie, S., Kroah-Hartman, G.

Entry type

article

Abstract

In June 2000, a major new class of vulnerabilities called \"format bugs\" was discovered when a vulnerability in WU-FTP appeared that acted almost like a buffer over-flow, but wasn\'t. Since then, dozens of format string vulnerabilities have appeared. This paper describes format bug problem, and presents FormatGuard: our proposed solution....

URL

http://66.102.1.104/scholar?hl ... security/formatguard.pdf+

Chapter

9

Key alpha

Cowan

Affiliation

WireX Communications

Publication Date

2001-01-01

Language

English

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.