{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,5]],"date-time":"2024-09-05T15:16:57Z","timestamp":1725549417549},"publisher-location":"Berlin, Heidelberg","reference-count":21,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783540310129"},{"type":"electronic","value":"9783540331537"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2006]]},"DOI":"10.1007\/11604938_14","type":"book-chapter","created":{"date-parts":[[2006,2,1]],"date-time":"2006-02-01T10:28:58Z","timestamp":1138789738000},"page":"179-193","source":"Crossref","is-referenced-by-count":1,"title":["Kimchi: A Binary Rewriting Defense Against Format String Attacks"],"prefix":"10.1007","author":[{"given":"Jin Ho","family":"You","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Seong Chae","family":"Seo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Young Dae","family":"Kim","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jun Yong","family":"Choi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sang Jun","family":"Lee","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Byung Ki","family":"Kim","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"14_CR1","unstructured":"Twillman, T.: Exploit for proftpd 1.2.0pre6 (1999), \n                    \n                      http:\/\/www.securityfocus.com\/archive\/1\/28143\/1999-09-16\/1999-09-22\/0"},{"key":"14_CR2","unstructured":"The MITRE Corporation: CVE dictionary (2004), \n                    \n                      http:\/\/www.cve.mitre.org\/cgi-bin\/cvekey.cgi?keyword=format+string"},{"key":"14_CR3","unstructured":"tf8: Wu-Ftpd remote format string stack overwrite vulnerability (2000), \n                    \n                      http:\/\/www.securityfocus.com\/bid\/1387"},{"key":"14_CR4","unstructured":"Osborne, A., McDonald, J.: Isc bind 4 nslookupcomplain() format string vulnerability (2001), \n                    \n                      http:\/\/www.securityfocus.com\/bid\/2309"},{"key":"14_CR5","unstructured":"Cowan, C., Barringer, M., Beattie, S., Kroah-Hartman, G., Frantzen, M., Lokier, J.: FormatGuard: Automatic protection from printf format string vulnerabilities. In: The 10th USENIX Security Symposium, Washington, DC, pp. 191\u2013200 (2001)"},{"key":"14_CR6","unstructured":"scut \/\u00a0team teso: Exploiting format string vulnerabilities (2001), \n                    \n                      http:\/\/www.cs.ucsb.edu\/~jzhou\/security\/formats-teso.html"},{"key":"14_CR7","doi-asserted-by":"publisher","first-page":"423","DOI":"10.1002\/spe.515","volume":"33","author":"K.S. Lhee","year":"2003","unstructured":"Lhee, K.S., Chapin, S.J.: Buffer overflow and format string overflow vulnerabilities. Software: Practice and Experience\u00a033, 423\u2013460 (2003)","journal-title":"Software: Practice and Experience"},{"key":"14_CR8","unstructured":"gera, riq: Advances in format string exploitation (2002), \n                    \n                      http:\/\/www.phrack.org\/phrack\/59\/p59-0x07.txt"},{"key":"14_CR9","unstructured":"Core Security Team: Vulnerabilities in your code - format strings (2002), \n                    \n                      http:\/\/www.core-sec.com\/examples\/core_format_strings.pdf"},{"key":"14_CR10","first-page":"201","volume-title":"Proceedings of the 10th USENIX Security Symposium (SECURITY 2001)","author":"U. Shankar","year":"2001","unstructured":"Shankar, U., Talwar, K., Foster, J.S., Wagner, D.: Detecting format string vulnerabilities with type qualifiers. In: Proceedings of the 10th USENIX Security Symposium (SECURITY 2001), pp. 201\u2013220. USENIX Association, Berkeley (2001)"},{"key":"14_CR11","unstructured":"Robbins, T.J.: libformat (2000), \n                    \n                      http:\/\/www.securityfocus.com\/data\/tools\/libformat-1.0pre5.tar.gz"},{"key":"14_CR12","unstructured":"Singh, N., Tsai, T.: Libsafe 2.0: Detection of format string vulnerability exploits (2001), \n                    \n                      http:\/\/www.research.avayalabs.com\/project\/libsafe\/doc\/whitepaper-20.ps"},{"key":"14_CR13","unstructured":"Newsome, J., Song, D.: Dynamic taint analysis for automatic detection, analysis, and signature gerneration of exploits on commodity software. In: Proceedings of the 12th Annual Network and Distributed System Security Symposium (NDSS 2005) (2005)"},{"key":"14_CR14","unstructured":"Prasad, M., Chiueh, T.C.: A binary rewriting defense against stack-based buffer overflow attacks. In: The Proceedings of USENIX 2003 Annual Technical Conference, pp. 211\u2013224 (2003)"},{"key":"14_CR15","doi-asserted-by":"publisher","first-page":"323","DOI":"10.1145\/161494.161501","volume":"1","author":"W. Landi","year":"1992","unstructured":"Landi, W.: Undecidability of static analysis. ACM Letters on Programming Languages and Systems\u00a01, 323\u2013337 (1992)","journal-title":"ACM Letters on Programming Languages and Systems"},{"key":"14_CR16","doi-asserted-by":"publisher","first-page":"1467","DOI":"10.1145\/186025.186041","volume":"16","author":"G. Ramalingam","year":"1994","unstructured":"Ramalingam, G.: The undecidability of aliasing. ACM Transactions on Programming Languages and Systems\u00a016, 1467\u20131471 (1994)","journal-title":"ACM Transactions on Programming Languages and Systems"},{"key":"14_CR17","doi-asserted-by":"crossref","unstructured":"Kildall, G.A.: A unified approach to global program optimization. In: ACM Symposium on Principles of Programming Languages, pp. 194\u2013206 (1973)","DOI":"10.1145\/512927.512945"},{"key":"14_CR18","volume-title":"Compilers Principles, Techniques, and Tools","author":"A.V. Aho","year":"1986","unstructured":"Aho, A.V., Sethi, R., Ullman, J.D.: Compilers Principles, Techniques, and Tools. Addison-Wesley, Reading (1986)"},{"key":"14_CR19","unstructured":"Tool Interface Standard (TIS) Committee: Executable and linking format (ELF) specification, version 1.2 (1995)"},{"key":"14_CR20","unstructured":"Emmerik, M.V.: Signatures for library functions in executable files. Technical Report FIT-TR-1994-02 (1994)"},{"key":"14_CR21","unstructured":"Guilfanov, I.: DataRescue: Fast library identification and recognition technology (1997)"}],"container-title":["Lecture Notes in Computer Science","Information Security Applications"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/11604938_14.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,4,27]],"date-time":"2021-04-27T07:04:55Z","timestamp":1619507095000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/11604938_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2006]]},"ISBN":["9783540310129","9783540331537"],"references-count":21,"URL":"https:\/\/doi.org\/10.1007\/11604938_14","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2006]]}}}