Windows Metafile Vulnerability: A Small Case Study

PDF

Authors
  1. Lavoie, Y.
  2. Salois, M.
Corporate Authors
Defence R&D Canada - Valcartier, Valcartier QUE (CAN)
Abstract
Understanding software is quite a complex task, even more so when dealing only with the executable via the assembly language. However, this is often the only available option to analyze software vulnerabilities and exploits. A potential solution is the use of software visualization techniques. Unfortunately, the vast majority of these techniques work with source code as does the experts who work on them. This document tries to illustrate the work of a security analyst through the analysis of the WMF vulnerability in order to give a better comprehension of the process to visualization experts. Very basic visualization already exists and is used as a basis for future discussions and improvements. Making the graphical representation more intuitive and interactive is the key to a faster comprehension.

Il y a un résumé en français ici.

Report Number
DRDC-VALCARTIER-TN-2006-106 — Technical Note
Date of publication
01 Mar 2006
Number of Pages
22
DSTKIM No
CA027090
CANDIS No
525130
Format(s):
CD ROM

Permanent link

Document 1 of 1

Date modified: