Accession Number:

AD1147428

Title:

Logical Analysis of One Formalization of Exploitation

Descriptive Note:

[Technical Report, Memorandum Report]

Corporate Author:

NAVAL RESEARCH LAB WASHINGTON DC

Personal Author(s):

Report Date:

2021-08-30

Pagination or Media Count:

27

Abstract:

This report is a logical analysis of a formalization of an exploit called code reuse. There are instances of this exploit being used for attackson existing systems. The basic scenario is to look at an application as consisting of blocks of code that can be strung together differently than theusual flow of control in the application. This is usually effected via altering the return addresses on the program stack. Looked upon in this way,an application consists of a collection of high level instructions, one per code block. The attacker can then string together these code blocks tosuit hisher own purposes. The formalization, while not without its faults, represents an insightful method for understanding code reuse exploits.The analysis is performed using Distributed Logic.

Descriptors:

Subject Categories:

Distribution Statement:

[A, Approved For Public Release]