ESRFuzzer:an enhanced fuzzing framework for physical SOHO router devices to discover multi-Type vuln

来源 :网络空间安全科学与技术(英文版) | 被引量 : 0次 | 上传用户:su18tt
下载到本地 , 更方便阅读
声明 : 本文档内容版权归属内容提供方 , 如果您对本文有版权争议 , 可与客服联系进行内容授权或下架
论文部分内容阅读
SOHO(small office/home office)routers provide services for end devices to connect to the Internet,playing an important role in cyberspace.Unfortunately,security vulnerabilities pervasively exist in these routers,especially in the web server modules,greatly endangering end users.To discover these vulnerabilities,fuzzing web server modules of SOHO routers is the most popular solution.However,its effectiveness is limited due to the lack of input specification,lack of routers\'internal running states,and lack of testing environment recovery mechanisms.Moreover,existing works for device fuzzing are more likely to detect memory corruption vulnerabilities.In this paper,we propose a solution ESRFuzzer to address these issues.It is a fully automated fuzzing framework for testing physical SOHO devices.It continuously and effectively generates test cases by leveraging two input semantic models,i.e.,KEY-VALUE data model and CONF-READ communication model,and automatically recovers the testing environment with power management.It also coordinates diversified mutation rules with multiple monitoring mechanisms to trigger multi-type vulnerabilities.With the guidance of the two semantic models,ESRFuzzer can work in two ways:general mode fuzzing and D-CONF mode fuzzing.General mode fuzzing can discover both issues which occur in the CONF and READ operation,while D-CONF mode fuzzing focus on the READ-op issues especially missed by general mode fuzzing.We ran ESRFuzzer on 10 popular routers across five vendors.In total,it discovered 136 unique issues,120 of which have been confirmed as 0-day vulnerabilities we found.As an improvement of SRFuzzer,ESRFuzzer have discovered 35 previous undiscovered READ-op issues that belong to three vulnerability types,and 23 of them have been confirmed as 0-day vulnerabilities by vendors.The experimental results show that ESRFuzzer outperforms state-of-the-art solutions in terms of types and number of vulnerabilities found.
其他文献
C 70E下侧门板生产工序为:裁料→校平→剪切→压形→落料,其产品质量已处于铁路行业的中游,有必要重新审视,设计复合模具,提高整机产品质量的档次.rn工艺分析rn生产现状rnC70E下侧门压形模具(C103-1807-00-00)原在4000t水压机(现已报废)上使用,现在2600t油压机上使用,详见图1,需要4名操作者,落料模具(C107-1763-00-00)在2000t冲床上使用,详见图2,需要4名操作者,2600t油压机和2000t冲床分布在2个厂房,压形和落料两道工序之间需要4次跨厂房物料倒运,
期刊
While consumers use the web to perform routine activities,they are under the constant threat of attack from malicious websites.Even when visiting\'trusted\'sites,there is always a risk that site is compromised,and,hosting a malicious script.In this sc
营养支持治疗可改善消化道恶性肿瘤病人术后营养状况和生命质量。国内外临床指南建议对恶性肿瘤手术病人术前施行早期以口服营养补充为主的营养支持治疗,以减少营养不良风险。肠内营养粉剂是胃肠道功能基本正常病人围手术期的主要营养支持方法。目前众多Meta分析结果显示:术后早期肠内营养能有效增强机体免疫功能、减少术后并发症和缩短住院时间,但近期结局指标分析不全面,且目前尚无关于中国病人的汇总分析结果。笔者查阅相关文献,采用Meta分析评价肠内营养粉剂对中国消化道恶性肿瘤病人术后近期疗效的影响。“,”Nutritiona
Gradual increase in the number of successful attacks against Industrial Control Systems(ICS)has led to an urgent need to create defense mechanisms for accurate and timely detection of the resulting process anomalies.Towards this end,a class of anomaly det
Due to its provable security and remarkable device-independence,masking has been widely accepted as a noteworthy algorithmic-level countermeasure against side-channel attacks.However,relatively high cost of masking severely limits its applicability.Consid
近年来,近红外二区荧光显影技术已在临床应用获得进展。与近红外一区荧光显影技术比较,其在显现肝脏肿瘤和胆道系统中具有更高成像质量、肿瘤敏感性和深层显像能力。近红外二区荧光显影技术作为一种能够提供高信背比和更深组织穿透等特性的术中实时影像技术,能够在提高手术安全性和治疗效果的同时缩短手术时间,具有良好发展前景和拓展潜力。随着新型染料的开发,这项技术能够在肝癌靶向成像、胆管灌注评估和远端胆总管显像等方面发挥更大作用。笔者就近红外二区荧光显影技术应用于肝胆外科的研究进展进行综述。“,”Near infrared
In recent years,the widespread applications of open-source software(OSS)have brought great convenience for software developers.However,it is always facing unavoidable security risks,such as open-source code defects and security vulnerabilities.To find out
Malware analysis is a task of utmost importance in cyber-security.Two approaches exist for malware analysis:static and dynamic.Modern malware uses an abundance of techniques to evade both dynamic and static analysis tools.Current dynamic analysis solution
期刊
腹腔感染常继发于腹腔中各类器官的损伤或病变,或者发生于腹部手术后。随着营养支持理念和技术的不断发展,营养支持逐渐成为腹腔感染病人治疗的重要手段之一。腹腔感染的综合治疗包括感染源控制、合理抗感染治疗、器官功能支持、营养治疗、免疫调理等。笔者回溯国内外相关研究成果,结合团队临床经验,对腹腔感染的营养支持策略进行分析和阐述。“,”Intra-abdominal infection is often secondary to the injury or lesion of various organs in th
Social engineering has posed a serious threat to cyberspace security.To protect against social engineering attacks,a fundamental work is to know what constitutes social engineering.This paper first develops a domain ontology of social engineering in cyber