"Buffer overflow attack is the most common and arguably the most dangerous attack method used in Internet security breach incidents reported in the public literature. Various solutions have been developed to address the buffer overflow vulnerability problem in both research and commercial communities. Almost all the solutions that provide adequate protection against buffer overflow attacks are implemented as compiler extensions and hence require the source code of the programs being protected to be available so that they can be re-compiled. While this requirement is reasonable in many cases, there are scenarios in which it is not feasible, e.g., legacy applications that are purchased from an outside vendor." - Abstract
Documents References- A Binary Rewriting Defense against Stack based Buffer Overflow Attacks, Manish Prasad and Tzi-cker Chiueh. Proceedings of the General Track: 2003 USENIX Annual Technical Conference. June 9-14, 2003.
- Statically Detecting Buffer Overflow Vulnerabilities, Larochelle and Evans.
- A First Step Towards Automated Detection of Buffer Overrun Vulnerabilities, Wagner, Foster, Brewer, Aiken.