An Exploitability Analysis Technique for Binary Vulnerability Based on Automatic Exception Suppression

<table class="algorithm-group"><tr><td><table class="algorithm" id="alg6"><tr><td colspan="2">(1) <b>Input:</b> Original chain list L</td></tr><tr><td colspan="2">(2) <b>Output:</b> None</td></tr><tr><td colspan="2">(3) data gadget_list = <span class="nowrap"><svg height="11.439pt" id="M76" style="vertical-align:-2.15067pt" version="1.1" viewbox="-0.0498162 -9.28833 9.10328 11.439" width="9.10328pt" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><g transform="matrix(.013,0,0,-0.013,0,0)"><path d="M290 -163V-135C183 -126 181 -122 181 -44V583C181 662 184 666 290 675V703H120V-163H290Z" id="g113-92"></path></g><g transform="matrix(.013,0,0,-0.013,4.485,0)"><path d="M226 -163V703H56V676C162 667 165 662 165 584V-43C165 -122 162 -126 56 -136V-163H226Z" id="g113-94"></path></g></svg>;</span></td></tr><tr><td colspan="2">(4) min_read = solve_constraints.min(violating_action_addr);</td></tr><tr><td colspan="2">(5) max_read = solve_constraints.max(violating_action_addr);</td></tr><tr><td colspan="2">(6) filtered_chain = filter(lambda x: (min_read &lt;= x) and (x&lt;= max_read),largest_regions);</td></tr><tr><td colspan="2">(7)  <b>for</b> chain in filtered_chain;</td></tr><tr><td colspan="2">(8)   new_constraint = violation_action_addr == chain;</td></tr><tr><td colspan="2">(9)   <b>if </b>solve_constraints.satisfiable(previous_constraint + new_constraint)</td></tr><tr><td colspan="2">(10)    data gadget_list.append(chain);</td></tr><tr><td colspan="2">(11) <b>End</b></td></tr></table></td></tr></table>

<div>Filter original chain to get data gadget.</div>

Security and Communication Networks

alg6

Algorithm 3

Algorithm 3: An Exploitability Analysis Technique for Binary Vulnerability Based on Automatic Exception Suppression 