{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,16]],"date-time":"2025-10-16T14:01:39Z","timestamp":1760623299619,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":17,"publisher":"ACM","license":[{"start":{"date-parts":[[2022,10,21]],"date-time":"2022-10-21T00:00:00Z","timestamp":1666310400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2022,10,21]]},"DOI":"10.1145\/3573428.3573550","type":"proceedings-article","created":{"date-parts":[[2023,3,15]],"date-time":"2023-03-15T10:43:09Z","timestamp":1678876989000},"page":"690-694","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":3,"title":["DEPA: Determining Exploit Primitives Automatically for Interactive Programs"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-5889-0056","authenticated-orcid":false,"given":"Jie","family":"Liu","sequence":"first","affiliation":[{"name":"School of Computer Science, Beijing University of Posts and Telecommunications, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0074-4766","authenticated-orcid":false,"given":"Hang","family":"An","sequence":"additional","affiliation":[{"name":"Codesafe Team of Legendsec, Qi45anxin Group, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6837-6683","authenticated-orcid":false,"given":"Jin","family":"Li","sequence":"additional","affiliation":[{"name":"Nation Key Laboratory of Science and Technology on Information System Security, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6877-780X","authenticated-orcid":false,"given":"Hongliang","family":"Liang","sequence":"additional","affiliation":[{"name":"School of Computer Science, Beijing University of Posts and Telecommunications, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2023,3,15]]},"reference":[{"volume-title":"NVD - CVSS Severity Distribution Over Time","year":"2022","key":"e_1_3_2_1_1_1","unstructured":"\u201cNVD - CVSS Severity Distribution Over Time.\u201d [Online]. Avaliable: https:\/\/nvd.nist.gov\/general\/visualizations\/vulnerability-visualizations\/. 2022"},{"key":"e_1_3_2_1_2_1","first-page":"143","volume-title":"IEEE Symposium on Security and Privacy","author":"Brumley D.","unstructured":"D. Brumley, P. Poosankam, D. Song, and J. Zheng, 2008 Automatic patch-based exploit generation is possible: Techniques and implications. In: IEEE Symposium on Security and Privacy. Oakland, California. pp. 143-157."},{"volume-title":"AEG: Automatic Exploit Generation. In: Proceedings of the Network and Distributed System Security Symposium","author":"Avgerinos T.","key":"e_1_3_2_1_3_1","unstructured":"T. Avgerinos, S. K. Cha, B. L. T. Hao and D. Brumley. 2011. AEG: Automatic Exploit Generation. In: Proceedings of the Network and Distributed System Security Symposium. San Diego, California."},{"key":"e_1_3_2_1_4_1","first-page":"78","volume-title":"IEEE Sixth International Conference on Software Security & Reliability","author":"Huang S. K.","unstructured":"S. K. Huang, M. H. Huang, P. Y. Huang, C. W. Lai, and W. M. Leong. 2012. CRAX: Software Crash Analysis for Automatic Exploit Generation by Modeling Attacks as Symbolic Continuations. In: IEEE Sixth International Conference on Software Security & Reliability. Gaithersburg, Maryland. pp.78-87."},{"volume-title":"27th USENIX Security Symposium","author":"Heelan S.","key":"e_1_3_2_1_5_1","unstructured":"S. Heelan, T. Melham, and D. Kroening. 2018. Automatic heap layout manipulation for exploitation. In: 27th USENIX Security Symposium. Baltimore. pp: 763-79."},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"crossref","unstructured":"A. Vishnyakov and A. Nurmukhametov. 2020. Survey of methods for automated code-reuse exploit generation. CoRR.","DOI":"10.1134\/S0361768821040071"},{"volume-title":"KEPLER: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities. In: 28th USENIXSecurity Symposium. Santa Clara. pp: 1187-1204","author":"Wu W.","key":"e_1_3_2_1_7_1","unstructured":"W. Wu, Y. Chen, X. Xing, and W. Zou. 2019. KEPLER: Facilitating Control-flow Hijacking Primitive Evaluation for Linux Kernel Vulnerabilities. In: 28th USENIXSecurity Symposium. Santa Clara. pp: 1187-1204."},{"key":"e_1_3_2_1_8_1","volume-title":"20th USENIX Security Symposium","volume":"10","author":"Schwartz E. J.","unstructured":"E. J. Schwartz, T. Avgerinos, and D. Brumley. 2011. Q: Exploit Hardening Made Easy. In: 20th USENIX Security Symposium. San Francisco, CA. vol. 10."},{"key":"e_1_3_2_1_9_1","volume-title":"Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security","author":"Wang Y.","year":"1914","unstructured":"Y. Wang, C. Zhang, X. Xiang, Z. Zhao, W. Li, X. Gong, B. Liu, K. Chen, and W. Zou. 2018. Revery: From Proof-of-Concept to Exploitable. In: Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security. Toronto, Canada. pp: 1914-1927."},{"volume-title":"CWE-CWE-122: Heap-based Buffer Overflow","year":"2022","key":"e_1_3_2_1_10_1","unstructured":"\u201cCWE-CWE-122: Heap-based Buffer Overflow.\u201d [online]. Avaliable: https:\/\/cwe.mitre.org\/data\/definitions\/122.html. 2022"},{"volume-title":"CWE-CWE-122: Use After Free","year":"2022","key":"e_1_3_2_1_11_1","unstructured":"\u201cCWE-CWE-122: Use After Free.\u201d [online]. Avaliable: https:\/\/cwe.mitre.org\/data\/definitions\/416.html. 2022"},{"volume-title":"MAZE: Towards Automated Heap Feng Shui. In: 30th USENIX Security Symposium. pp: 1647-1664","author":"Wang Y.","key":"e_1_3_2_1_12_1","unstructured":"Y. Wang, C. Zhang, Z. Zhao, B. Zhang, X. Gong, and W. Zou. 2021. MAZE: Towards Automated Heap Feng Shui. In: 30th USENIX Security Symposium. pp: 1647-1664."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"crossref","unstructured":"F. Deng J. Wang B. Zhang C. Feng Z. Jiang and Y. Su. 2020. A Pattern-Based Software Testing Framework for Exploitability Evaluation of Metadata Corruption Vulnerabilities. Scientific Programming.","DOI":"10.1155\/2020\/8883746"},{"volume-title":"IEEE Symposium on Security and Privacy","author":"Shoshitaishvili Y.","key":"e_1_3_2_1_14_1","unstructured":"Y. Shoshitaishvili, R. Wang, C. Salls, N. Stephens, M. Polino, A. Dutcher, J, Grosen, S. Feng, C. Hauser, C. Krugel, and G. Vigna. 2016. SOK: (State of) The Art of War: Offensive Techniques in Binary Analysis. In: IEEE Symposium on Security and Privacy. San Jose, CA. pp: 138-157.Conference Name: ACM Woodstock conference"},{"volume-title":"Unleashing Mayhem on Binary Code. In: IEEE Symposium on Security and Privacy","author":"Cha S. K.","key":"e_1_3_2_1_15_1","unstructured":"S. K. Cha, T. Avgerinos, A. Rebert, and D. Brumley. 2012. Unleashing Mayhem on Binary Code. In: IEEE Symposium on Security and Privacy. San Francisco, Califonia. pp: 380-394"},{"key":"e_1_3_2_1_16_1","unstructured":"\u201cREX.\u201d [online]. Available: https:\/\/wwww.github.com\/angr\/rex. 2022"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"crossref","unstructured":"Z. Jiang C. Feng and C. Tang. 2018. An exploitability analysis technique for binary vulnerability based on automatic exception suppression. Security and Communication Networks.","DOI":"10.1155\/2018\/4610320"}],"event":{"name":"EITCE 2022: 2022 6th International Conference on Electronic Information Technology and Computer Engineering","acronym":"EITCE 2022","location":"Xiamen China"},"container-title":["Proceedings of the 2022 6th International Conference on Electronic Information Technology and Computer Engineering"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3573428.3573550","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3573428.3573550","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T17:49:33Z","timestamp":1750182573000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3573428.3573550"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,10,21]]},"references-count":17,"alternative-id":["10.1145\/3573428.3573550","10.1145\/3573428"],"URL":"https:\/\/doi.org\/10.1145\/3573428.3573550","relation":{},"subject":[],"published":{"date-parts":[[2022,10,21]]},"assertion":[{"value":"2023-03-15","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}