{"id":"https://openalex.org/W2953598967","doi":"https://doi.org/10.1145/3338906.3338966","title":"Locating vulnerabilities in binaries via memory layout recovering","display_name":"Locating vulnerabilities in binaries via memory layout recovering","publication_year":2019,"publication_date":"2019-08-09","ids":{"openalex":"https://openalex.org/W2953598967","doi":"https://doi.org/10.1145/3338906.3338966","mag":"2953598967"},"language":"en","primary_location":{"id":"doi:10.1145/3338906.3338966","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3338906.3338966","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2019 27th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://ink.library.smu.edu.sg/cgi/viewcontent.cgi?article=8069&context=sis_research","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100419357","display_name":"Haijun Wang","orcid":"https://orcid.org/0000-0002-3240-0469"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]},{"id":"https://openalex.org/I180726961","display_name":"Shenzhen University","ror":"https://ror.org/01vy4gh70","country_code":"CN","type":"education","lineage":["https://openalex.org/I180726961"]}],"countries":["CN","SG"],"is_corresponding":true,"raw_author_name":"Haijun Wang","raw_affiliation_strings":["Shenzhen University, China / Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Shenzhen University, China / Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005","https://openalex.org/I180726961"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5084396416","display_name":"Xiaofei Xie","orcid":"https://orcid.org/0000-0002-1288-6502"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Xiaofei Xie","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072863865","display_name":"Shang\u2010Wei Lin","orcid":"https://orcid.org/0000-0002-9726-3434"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Shang-Wei Lin","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063706766","display_name":"Yun Lin","orcid":"https://orcid.org/0000-0001-8255-0118"},"institutions":[{"id":"https://openalex.org/I165932596","display_name":"National University of Singapore","ror":"https://ror.org/01tgyzw49","country_code":"SG","type":"education","lineage":["https://openalex.org/I165932596"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Yun Lin","raw_affiliation_strings":["National University of Singapore, Singapore"],"affiliations":[{"raw_affiliation_string":"National University of Singapore, Singapore","institution_ids":["https://openalex.org/I165932596"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5068561556","display_name":"Yuekang Li","orcid":"https://orcid.org/0000-0003-4382-0757"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Yuekang Li","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5042013137","display_name":"Shengchao Qin","orcid":"https://orcid.org/0000-0003-3028-8191"},"institutions":[{"id":"https://openalex.org/I874055015","display_name":"Teesside University","ror":"https://ror.org/03z28gk75","country_code":"GB","type":"education","lineage":["https://openalex.org/I874055015"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Shengchao Qin","raw_affiliation_strings":["Teesside University, UK"],"affiliations":[{"raw_affiliation_string":"Teesside University, UK","institution_ids":["https://openalex.org/I874055015"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100355692","display_name":"Yang Liu","orcid":"https://orcid.org/0000-0001-7300-9215"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Yang Liu","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101554099","display_name":"Ting Liu","orcid":"https://orcid.org/0000-0002-7600-0934"},"institutions":[{"id":"https://openalex.org/I87445476","display_name":"Xi'an Jiaotong University","ror":"https://ror.org/017zhmm22","country_code":"CN","type":"education","lineage":["https://openalex.org/I87445476"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Ting Liu","raw_affiliation_strings":["Xi'an Jiaotong University, China"],"affiliations":[{"raw_affiliation_string":"Xi'an Jiaotong University, China","institution_ids":["https://openalex.org/I87445476"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":8,"corresponding_author_ids":["https://openalex.org/A5100419357"],"corresponding_institution_ids":["https://openalex.org/I172675005","https://openalex.org/I180726961"],"apc_list":null,"apc_paid":null,"fwci":1.8783,"has_fulltext":false,"cited_by_count":16,"citation_normalized_percentile":{"value":0.89395345,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"718","last_page":"728"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9980999827384949,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.995199978351593,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8793907165527344},{"id":"https://openalex.org/keywords/memory-safety","display_name":"Memory safety","score":0.6481668949127197},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.553309440612793},{"id":"https://openalex.org/keywords/memory-leak","display_name":"Memory leak","score":0.5124436020851135},{"id":"https://openalex.org/keywords/semantics","display_name":"Semantics (computer science)","score":0.4668930768966675},{"id":"https://openalex.org/keywords/memory-model","display_name":"Memory model","score":0.463911235332489},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.4333919286727905},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.3738918900489807},{"id":"https://openalex.org/keywords/memory-management","display_name":"Memory management","score":0.29299795627593994},{"id":"https://openalex.org/keywords/compiler","display_name":"Compiler","score":0.21619245409965515},{"id":"https://openalex.org/keywords/shared-memory","display_name":"Shared memory","score":0.1900874674320221},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.18741440773010254},{"id":"https://openalex.org/keywords/overlay","display_name":"Overlay","score":0.08823138475418091}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8793907165527344},{"id":"https://openalex.org/C28180684","wikidata":"https://www.wikidata.org/wiki/Q4080983","display_name":"Memory safety","level":3,"score":0.6481668949127197},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.553309440612793},{"id":"https://openalex.org/C156731835","wikidata":"https://www.wikidata.org/wiki/Q751740","display_name":"Memory leak","level":4,"score":0.5124436020851135},{"id":"https://openalex.org/C184337299","wikidata":"https://www.wikidata.org/wiki/Q1437428","display_name":"Semantics (computer science)","level":2,"score":0.4668930768966675},{"id":"https://openalex.org/C12186640","wikidata":"https://www.wikidata.org/wiki/Q6815743","display_name":"Memory model","level":3,"score":0.463911235332489},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.4333919286727905},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.3738918900489807},{"id":"https://openalex.org/C176649486","wikidata":"https://www.wikidata.org/wiki/Q2308807","display_name":"Memory management","level":3,"score":0.29299795627593994},{"id":"https://openalex.org/C169590947","wikidata":"https://www.wikidata.org/wiki/Q47506","display_name":"Compiler","level":2,"score":0.21619245409965515},{"id":"https://openalex.org/C133875982","wikidata":"https://www.wikidata.org/wiki/Q764810","display_name":"Shared memory","level":2,"score":0.1900874674320221},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.18741440773010254},{"id":"https://openalex.org/C136085584","wikidata":"https://www.wikidata.org/wiki/Q910289","display_name":"Overlay","level":2,"score":0.08823138475418091}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/3338906.3338966","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3338906.3338966","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2019 27th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering","raw_type":"proceedings-article"},{"id":"pmh:oai:ink.library.smu.edu.sg:sis_research-8069","is_oa":true,"landing_page_url":"https://ink.library.smu.edu.sg/cgi/viewcontent.cgi?article=8069&context=sis_research","pdf_url":null,"source":{"id":"https://openalex.org/S4377196871","display_name":"Institutional Knowledge (InK) - Institutional Knowledge at Singapore Management University (Singapore Management University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79891267","host_organization_name":"Singapore Management University","host_organization_lineage":["https://openalex.org/I79891267"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://doi.org/10.1145/3338906.3338966","raw_type":"Conference Proceeding Article"},{"id":"pmh:oai:https://research.tees.ac.uk/ws/oai:openaire/83e6f323-3fed-4634-b896-b8a3ceb78038","is_oa":false,"landing_page_url":"https://research.tees.ac.uk/en/publications/83e6f323-3fed-4634-b896-b8a3ceb78038","pdf_url":null,"source":{"id":"https://openalex.org/S4306401198","display_name":"TeesRep (Teesside University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I874055015","host_organization_name":"Teesside University","host_organization_lineage":["https://openalex.org/I874055015"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Wang, H, Xie, X, Lin, S-W, Lin, Y, Li, Y, Qin, S, Liu, Y & Liu, T 2019, Locating Vulnerabilities in Binaries via Memory Layout Recovering. in The 27th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering. ACM.","raw_type":"contributionToPeriodical"}],"best_oa_location":{"id":"pmh:oai:ink.library.smu.edu.sg:sis_research-8069","is_oa":true,"landing_page_url":"https://ink.library.smu.edu.sg/cgi/viewcontent.cgi?article=8069&context=sis_research","pdf_url":null,"source":{"id":"https://openalex.org/S4377196871","display_name":"Institutional Knowledge (InK) - Institutional Knowledge at Singapore Management University (Singapore Management University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79891267","host_organization_name":"Singapore Management University","host_organization_lineage":["https://openalex.org/I79891267"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://doi.org/10.1145/3338906.3338966","raw_type":"Conference Proceeding Article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.7200000286102295}],"awards":[{"id":"https://openalex.org/G4921399682","display_name":null,"funder_award_id":"NRF2018NCR-NCR005-0001","funder_id":"https://openalex.org/F4320320709","funder_display_name":"National Research Foundation Singapore"},{"id":"https://openalex.org/G7803258927","display_name":null,"funder_award_id":"61772347","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320320709","display_name":"National Research Foundation Singapore","ror":"https://ror.org/03cpyc314"},{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":58,"referenced_works":["https://openalex.org/W191489030","https://openalex.org/W1582456956","https://openalex.org/W1878544538","https://openalex.org/W1954816054","https://openalex.org/W1964859659","https://openalex.org/W1976883055","https://openalex.org/W1996097966","https://openalex.org/W2001698600","https://openalex.org/W2035661891","https://openalex.org/W2054280038","https://openalex.org/W2065540707","https://openalex.org/W2071965703","https://openalex.org/W2088181608","https://openalex.org/W2101819268","https://openalex.org/W2114345296","https://openalex.org/W2122757982","https://openalex.org/W2130514924","https://openalex.org/W2134633067","https://openalex.org/W2136938453","https://openalex.org/W2141365240","https://openalex.org/W2145064897","https://openalex.org/W2152565783","https://openalex.org/W2154795299","https://openalex.org/W2155851497","https://openalex.org/W2156858199","https://openalex.org/W2162376048","https://openalex.org/W2169212615","https://openalex.org/W2170922286","https://openalex.org/W2171683519","https://openalex.org/W2301548261","https://openalex.org/W2344180913","https://openalex.org/W2350778671","https://openalex.org/W2351085620","https://openalex.org/W2352511489","https://openalex.org/W2383417445","https://openalex.org/W2466114212","https://openalex.org/W2471111208","https://openalex.org/W2496999134","https://openalex.org/W2504609973","https://openalex.org/W2535617737","https://openalex.org/W2546918856","https://openalex.org/W2612168751","https://openalex.org/W2613229705","https://openalex.org/W2615681808","https://openalex.org/W2741068848","https://openalex.org/W2744752929","https://openalex.org/W2757104921","https://openalex.org/W2766540688","https://openalex.org/W2778319809","https://openalex.org/W2865298191","https://openalex.org/W2911958453","https://openalex.org/W3011209520","https://openalex.org/W3104664063","https://openalex.org/W4230177578","https://openalex.org/W4232276817","https://openalex.org/W4237907241","https://openalex.org/W4239035626","https://openalex.org/W4245736681"],"related_works":["https://openalex.org/W2572740268","https://openalex.org/W4385750148","https://openalex.org/W4206394013","https://openalex.org/W4248542611","https://openalex.org/W4235971859","https://openalex.org/W2519212377","https://openalex.org/W2153463445","https://openalex.org/W2963621223","https://openalex.org/W2138369269","https://openalex.org/W2240640985"],"abstract_inverted_index":{"Locating":[0],"vulnerabilities":[1,20,65,118,139],"is":[2,16,33,41,135],"an":[3,31,61],"important":[4],"task":[5],"for":[6,84],"security":[7],"auditing,":[8],"exploit":[9],"writing,":[10],"and":[11,79,86,126,149],"code":[12],"hardening.":[13],"However,":[14],"it":[15,40],"challenging":[17],"to":[18,43,63,137],"locate":[19,64,117,138],"in":[21,53,110,119],"binary":[22,54],"code,":[23],"because":[24],"most":[25],"program":[26,38,92,154],"semantics":[27,93],"(e.g.,":[28],"boundaries":[29,52],"of":[30,76,143],"array)":[32],"missing":[34],"after":[35],"compilation.":[36],"Without":[37],"semantics,":[39],"difficult":[42],"determine":[44],"whether":[45],"a":[46,74],"memory":[47,68,97,102,107,123],"access":[48],"exceeds":[49],"its":[50],"valid":[51],"code.":[55],"In":[56],"this":[57],"work,":[58],"we":[59,72,89,115],"propose":[60],"approach":[62,134],"based":[66,99,163],"on":[67,100,140,164],"layout":[69,124],"recovery.":[70],"First,":[71],"collect":[73],"set":[75],"passed":[77,85,111],"executions":[78,112],"one":[80],"failed":[81,87,120],"execution.":[82],"Then,":[83],"executions,":[88],"restore":[90],"their":[91,165],"by":[94,122],"recovering":[95],"fine-grained":[96],"layouts":[98,108],"the":[101,106,132],"addressing":[103],"model.":[104],"With":[105],"recovered":[109],"as":[113],"reference,":[114],"can":[116,150],"execution":[121],"identification":[125],"comparison.":[127],"Our":[128],"experiments":[129],"show":[130],"that":[131],"proposed":[133],"effective":[136],"24":[141],"out":[142],"25":[144],"DARPA\u2019s":[145],"CGC":[146],"programs":[147],"(96%),":[148],"effectively":[151],"classifies":[152],"453":[153],"crashes":[155],"(in":[156],"5":[157],"Linux":[158],"programs)":[159],"into":[160],"19":[161],"groups":[162],"root":[166],"causes.":[167]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":3},{"year":2020,"cited_by_count":5},{"year":2019,"cited_by_count":3}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}