• DocumentCode
    1601032
  • Title

    Automatic Patch-Based Exploit Generation is Possible: Techniques and Implications

  • Author

    Brumley, David ; Poosankam, Pongsin ; Song, Dawn ; Zheng, Jiang

  • Author_Institution
    Carnegie Mellon Univ., Pittsburgh, PA
  • fYear
    2008
  • Firstpage
    143
  • Lastpage
    157
  • Abstract
    The automatic patch-based exploit generation problem is: given a program P and a patched version of the program P´, automatically generate an exploit for the potentially unknown vulnerability present in P but fixed in P´. In this paper, we propose techniques for automatic patch-based exploit generation, and show that our techniques can automatically generate exploits for 5 Microsoft programs based upon patches provided via Windows Update. Although our techniques may not work in all cases, a fundamental tenant of security is to conservatively estimate the capabilities of attackers. Thus, our results indicate that automatic patch-based exploit generation should be considered practical. One important security implication of our results is that current patch distribution schemes which stagger patch distribution over long time periods, such as Windows Update, may allow attackers who receive the patch first to compromise the significant fraction of vulnerable hosts who have not yet received the patch.
  • Keywords
    automatic programming; security of data; software maintenance; Microsoft program; Windows Update; automatic patch-based exploit generation; patch distribution scheme; security implication; Government; Information security; Information technology; National security; Privacy; Testing; combined execution; exploit generation; patch; symbolic execution; test case generation;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Security and Privacy, 2008. SP 2008. IEEE Symposium on
  • Conference_Location
    Oakland, CA
  • ISSN
    1081-6011
  • Print_ISBN
    978-0-7695-3168-7
  • Type

    conf

  • DOI
    10.1109/SP.2008.17
  • Filename
    4531150