OFFDTAN: A New Approach of Offline Dynamic Taint Analysis for Binaries

<table class="fixed-width table-group" id="tab3"><tr><td><table class="table"><colgroup><col style="width:10.31em"/><col style="width:4.36em"/><col style="width:7.59em"/><col style="width:7.12em"/><col style="width:12.25em"/><col style="width:7.01em"/></colgroup><tr><td class="thead-hr" colspan="6"><hr/></td></tr><tr class="thead"><td class="align_left">Program</td><td class="align_center">Version</td><td class="align_center">Vulnerability</td><td class="align_center">Crash Address</td><td class="align_center">Crash Instruction</td><td class="align_center">Offset of Taint</td></tr><tr><td class="thead-hr" colspan="6"><hr/></td></tr><tr><td class="align_left">Adobe Reader</td><td class="align_center">9.3.4</td><td class="align_center">CVE-2010-2883</td><td class="align_center">0x0803DDAB</td><td class="align_center">call strcat</td><td class="align_center">0x12C</td></tr><tr><td class="align_left">Microsoft Office Excel</td><td class="align_center">2003</td><td class="align_center">CVE-2011-0104</td><td class="align_center">0x300DE834</td><td class="align_center">rep movs</td><td class="align_center">0x300</td></tr><tr><td class="align_left">Firefox</td><td class="align_center">3.6.16</td><td class="align_center">CVE-2011-0073</td><td class="align_center">0x1046659B</td><td class="align_center">call dword ptr [ECX + 70h]</td><td class="align_center">0x4A</td></tr><tr><td class="align_left">Microsoft Office Word</td><td class="align_center">2003</td><td class="align_center">CVE-2012-0158</td><td class="align_center">0x275C8A0A</td><td class="align_center">rep movs</td><td class="align_center">0xA0F</td></tr><tr class="table-tr"><td colspan="6"><hr class="tbody-hr"/></td></tr></table></td></tr></table>

<div>Program description and evaluation results.</div>

Security and Communication Networks

tab3

Table 3

Table 3: OFFDTAN: A New Approach of Offline Dynamic Taint Analysis for Binaries 