CR-ATTACKER: Exploiting Crash-Reporting Systems Using Timing Gap and Unrestricted File-Based Workflow

CR-ATTACKER: Exploiting Crash-Reporting Systems Using Timing Gap and Unrestricted File-Based Workflow

Software vendors widely adopt crash-reporting systems to automate the collection of crash reports, enabling efficient diagnosis and management of software failures. However, these reports often contain detailed memory snapshots of crashed processes, which may include sensitive user data (e.g., crede...

Full description

Saved in:
Bibliographic Details
Main Authors: Seong-Joong Kim, Myoungsung You, Seungwon Shin
Format: Article
Language:English
Published: IEEE 2025-01-01
Series:IEEE Access
Subjects:
Software crash
crash reporter
exploitation
denial-of-service
bypass ASLR
Online Access:https://ieeexplore.ieee.org/document/10937218/
Tags: Add Tag
No Tags, Be the first to tag this record!

Internet

https://ieeexplore.ieee.org/document/10937218/

Similar Items