Abstract
The goal of this research project was to identify categories of programming flaws that lead to software bugs and index existing vulnerability reports against those categories. A keyword-based search placed 70% of the records from the OSVDB and CVE databases into 15 vulnerability categories. The results identified malformed data, buffer overflow and cross-site scripting as the top three issues. The project laid the foundations for future research into ways of mitigating programming flaws. Copyright 2005 ACM.
Author supplied keywords
- CVE
- OSVDB
- buffer overflow
- code injection
- cross-site scripting
- default configuration
- dot-dot attack
- format string vulnerability
- integer errors
- malformed data
- memory leak
- programming flaws
- race condition
- software vulnerabilities
- spoofing
- statistics
- storage protection
- symlink attacks
- trusting the environment
- weak encryption
Cite
CITATION STYLE
Petkov, K. (2005). Overcoming programming flaws: Indexing of common software vulnerabilities. In Proceedings of the 2005 Information Security Curriculum Development Conference, InfoSecCD ’05 (pp. 127–134). https://doi.org/10.1145/1107622.1107652
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
