{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,7,21]],"date-time":"2024-07-21T05:11:33Z","timestamp":1721538693726},"reference-count":49,"publisher":"Springer Science and Business Media LLC","issue":"3","license":[{"start":{"date-parts":[[2010,10,13]],"date-time":"2010-10-13T00:00:00Z","timestamp":1286928000000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["J Comput Virol"],"published-print":{"date-parts":[[2011,8]]},"DOI":"10.1007\/s11416-010-0146-0","type":"journal-article","created":{"date-parts":[[2010,10,13]],"date-time":"2010-10-13T12:46:55Z","timestamp":1286974015000},"page":"173-188","source":"Crossref","is-referenced-by-count":5,"title":["Filter-resistant code injection on ARM"],"prefix":"10.1007","volume":"7","author":[{"given":"Yves","family":"Younan","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Pieter","family":"Philippaerts","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Frank","family":"Piessens","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wouter","family":"Joosen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sven","family":"Lachmund","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Thomas","family":"Walter","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2010,10,13]]},"reference":[{"key":"146_CR1","doi-asserted-by":"crossref","unstructured":"Abadi, M., Budiu, M., Erlingsson, \u00da., Ligatti, J.: Control-flow integrity. In: 12th ACM Conference on Computer and Communications Security (2005)","DOI":"10.1145\/1102120.1102165"},{"key":"146_CR2","unstructured":"Aleph1.: Smashing the stack for fun and profit. Phrack, 49, (1996)"},{"key":"146_CR3","unstructured":"Anisimov, A.: Defeating Microsoft Windows XP SP2 heap protection and DEP bypass. Positive Technologies, Tech Report. http:\/\/www.ptsecurity.com\/download\/defeating-xpsp2-heapprotection.pdf"},{"key":"146_CR4","unstructured":"Anonymous.: Once upon a free(). Phrack, 57, (2001)"},{"key":"146_CR5","doi-asserted-by":"crossref","unstructured":"Barrantes, E.G., Ackley, D.H., Forrest, S., Palmer, T.S., Stefanovi\u0107, D., Zovi, D.D.: Randomized instruction set emulation to disrupt binary code injection attacks. In: 10th ACM Conference on Computer and Communications Security (2003)","DOI":"10.1145\/948143.948147"},{"key":"146_CR6","unstructured":"Bello Rivas, J.: Overwriting the .dtors section (2000)"},{"key":"146_CR7","unstructured":"Bhatkar, S., Duvarney, D.C., Sekar, R.: Address obfuscation: An efficient approach to combat a broad range of memory error exploits. In: 12th USENIX Security Symposium (2003)"},{"key":"146_CR8","unstructured":"Bhatkar, S., Sekar, R.: Data space randomization. In: 5th Conference on Detection of Intrusions and Malware & Vulnerability Assessment. Lecture Notes in Computer Science, vol. 5137 (2008)"},{"key":"146_CR9","unstructured":"Bhatkar, S., Sekar, R., Duvarney, D.C.: Efficient techniques for comprehensive protection from memory error exploits. In: 14th USENIX Security Symposium (2005)"},{"key":"146_CR10","unstructured":"Blexim. Basic integer overflows. Phrack, 60 (2002)"},{"key":"146_CR11","doi-asserted-by":"crossref","unstructured":"Buchanan, E., Roemer, R., Shacham, H., Savage, S.: When good instructions go bad: generalizing return-oriented programming to RISC. In: 15th ACM Conference on Computer and Communications Security (2008)","DOI":"10.1145\/1455770.1455776"},{"key":"146_CR12","unstructured":"Bulba and Kil3r.: Bypassing StackGuard and Stackshield. Phrack, 56, (2000)"},{"key":"146_CR13","unstructured":"Cowan, C., Beattie, S., Johansen, J., Wagle, P.: PointGuard: protecting pointers from buffer overflow vulnerabilities. In: 12th USENIX Security Symposium (2003)"},{"key":"146_CR14","unstructured":"Cowan, C., Pu, C., Maier, D., Hinton, H., Walpole, J., Bakke, P., Beattie, S., Grier, A., Wagle, P., Zhang, Q.: StackGuard: automatic adaptive detection and prevention of buffer-overflow attacks. In: 7th USENIX Security Symposium (1998)"},{"key":"146_CR15","unstructured":"Dobrovitski, I.: Exploit for CVS double free() for Linux pserver (2003)"},{"key":"146_CR16","unstructured":"Eller, R.: Bypassing msb data filters for buffer overflow exploits on intel platforms (2000)"},{"key":"146_CR17","unstructured":"Erlingsson, \u00da.: Low-level software security: attacks and defenses. Technical Report MSR-TR-2007-153, Microsoft Research (2007)"},{"key":"146_CR18","unstructured":"Etoh, H., Yoda, K.: Protecting from stack-smashing attacks. Technical report, IBM Research (2000)"},{"key":"146_CR19","unstructured":"funkysh. Into my ARMs: Developing StrongARM\/Linux shellcode. Phrack, 58 (2001)"},{"key":"146_CR20","unstructured":"Hurman, T.: Exploring Windows CE shellcode (2005)"},{"key":"146_CR21","unstructured":"Jones, R.W.M., Kelly, P.H.J.: Backwards-compatible bounds checking for arrays and pointers in C programs. In: 3rd International Workshop on Automatic Debugging (1997)"},{"key":"146_CR22","doi-asserted-by":"crossref","unstructured":"Kc, G.S., Keromytis, A.D., Prevelakis, V.: Countering code-injection attacks with instruction-set randomization. In: 10th ACM Conference on Computer and Communications Security (2003)","DOI":"10.1145\/948143.948146"},{"key":"146_CR23","unstructured":"Kiriansky, V., Bruening, D., Amarasinghe, S.: Secure execution via program shepherding. In: 11th USENIX Security Symposium (2002)"},{"key":"146_CR24","doi-asserted-by":"crossref","unstructured":"K\u00f6hler, S., Schindelhauer, C., Ziegler, M.: On approximating real-world halting problems. In: 15th International Symposium on Fundamentals of Computation Theory. Lecture Notes in Computer Science, vol. 3623 (2005)","DOI":"10.1007\/11537311_40"},{"key":"146_CR25","unstructured":"Moore, H.D.: Cracking the iPhone. http:\/\/blog.metasploit.com\/2007\/10\/cracking-iphone-part-1.html"},{"key":"146_CR26","unstructured":"M\u00fcller, U.: Brainf*ck (1993)"},{"key":"146_CR27","unstructured":"Ormandy, T.: LibTIFF next rle decoder remote heap buffer overflow vulnerability (2006)"},{"key":"146_CR28","unstructured":"Ormandy, T.: LibTIFF TiffFetchShortPair remote buffer overflow vulnerability (2006)"},{"key":"146_CR29","unstructured":"Ortega, A.: Android web browser gif file heap-based buffer overflow vulnerability (2008)"},{"key":"146_CR30","unstructured":"Provos, N.: Improving host security with system call policies. In: 12th USENIX Security Symposium (2003)"},{"key":"146_CR31","unstructured":"Ratanaworabhan, P., Livshits, B., Zorn, B.: Nozzle: a defense against heap-spraying code injection attacks. Technical Report MSR-TR-2008-176, Microsoft Research (2008)"},{"key":"146_CR32","unstructured":"Richarte, G.: Four different tricks to bypass stackshield and stackguard protection (2002)"},{"key":"146_CR33","unstructured":"rix. Writing IA32 alphanumeric shellcodes. Phrack, 57 (2001)"},{"key":"146_CR34","unstructured":"Ruwase, O., Lam, M.S.: A practical dynamic buffer overflow detector. In: 11th Annual Network and Distributed System Security Symposium (2004)"},{"key":"146_CR35","unstructured":"Scut. Exploiting format string vulnerabilities (2001)"},{"key":"146_CR36","doi-asserted-by":"crossref","unstructured":"Shacham, H.: The geometry of innocent flesh on the bone: Return-into-libc without function calls (on the x86). In: 14th ACM conference on Computer and Communications Security (2007)","DOI":"10.1145\/1315245.1315313"},{"key":"146_CR37","doi-asserted-by":"crossref","unstructured":"Shacham, H., Page, M., Pfaff, B., Goh, E.J., Modadugu, N., Boneh, D.: On the effectiveness of address-space randomization. In: 11th ACM conference on Computer and Communications Security (2004)","DOI":"10.1145\/1030083.1030124"},{"key":"146_CR38","unstructured":"skape, Skywing.: Bypassing windows hardware-enforced data execution prevention. Uninformed, 2 (2005)"},{"key":"146_CR39","volume-title":"ARM System Developer\u2019s Guide","author":"A. Sloss","year":"2004","unstructured":"Sloss A., Symes D., Wright C.: ARM System Developer\u2019s Guide. Elsevier, Amsterdam (2004)"},{"key":"146_CR40","unstructured":"Solar Designer.: Getting around non-executable stack (and fix) (1997)"},{"key":"146_CR41","unstructured":"Sotirov, A.: Reverse engineering and the ANI vulnerability (2007)"},{"key":"146_CR42","unstructured":"Sotirov, A., Dowd, M.: Bypassing browser memory protections: setting back browser security by 10\u00a0years. In: BlackHat (2008)"},{"key":"146_CR43","unstructured":"Sovarel, N., Evans, D., Paul, N.: Where\u2019s the FEEB? the effectiveness of instruction set randomization. In: 14th USENIX Security Symposium (2005)"},{"key":"146_CR44","unstructured":"Stokes, J.: ARM attacks Atom with 2GHz A9; can servers be far behind? Ars Technica. http:\/\/arstechnica.com\/business\/news\/2009\/09\/arm-attacks-atom-with-2ghz-a9-can-servers-be-far-behind.ars"},{"key":"146_CR45","doi-asserted-by":"crossref","unstructured":"Strackx, R., Younan, Y., Philippaerts, P., Piessens, F., Lachmund, S., Walter, T.: Breaking the memory secrecy assumption. In: European Workshop on System Security (2009)","DOI":"10.1145\/1519144.1519145"},{"key":"146_CR46","unstructured":"Wojtczuk, R.: Defeating Solar Designer non-executable stack patch (1998)"},{"key":"146_CR47","unstructured":"Younan, Y., Joosen, W., Piessens, F.: Code injection in C and C++: a survey of vulnerabilities and countermeasures. Technical Report CW386, Dept. Computerwetenschappen, KULeuven (2004)"},{"key":"146_CR48","doi-asserted-by":"crossref","unstructured":"Younan, Y., Philippaerts, P., Cavallaro, L., Sekar, R., Piessens, F., Joosen, W.: PAriCheck: an efficient pointer arithmetic checker for C programs. Technical Report CW554, Dept. Computerwetenschappen, KULeuven (2009)","DOI":"10.1145\/1755688.1755707"},{"key":"146_CR49","doi-asserted-by":"crossref","unstructured":"Younan, Y., Philippaerts, P., Piessens, F., Joosen, W., Lachmund, S., Walter, T.: Filter-resistant code injection on ARM. In: Proceedings of the 16th ACM conference on Computer and communications security, pages 11\u201320. ACM (2009)","DOI":"10.1145\/1653662.1653665"}],"container-title":["Journal in Computer Virology"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11416-010-0146-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s11416-010-0146-0\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11416-010-0146-0","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,5]],"date-time":"2019-06-05T12:28:15Z","timestamp":1559737695000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s11416-010-0146-0"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2010,10,13]]},"references-count":49,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2011,8]]}},"alternative-id":["146"],"URL":"https:\/\/doi.org\/10.1007\/s11416-010-0146-0","relation":{},"ISSN":["1772-9890","1772-9904"],"issn-type":[{"value":"1772-9890","type":"print"},{"value":"1772-9904","type":"electronic"}],"subject":[],"published":{"date-parts":[[2010,10,13]]}}}