all InfoSec news
Fuzzing BusyBox: Leveraging LLM and Crash Reuse for Embedded Bug Unearthing
March 7, 2024, 5:11 a.m. | Asmita, Yaroslav Oliinyk, Michael Scott, Ryan Tsang, Chongzhou Fang, Houman Homayoun
cs.CR updates on arXiv.org arxiv.org
Abstract: BusyBox, an open-source software bundling over 300 essential Linux commands into a single executable, is ubiquitous in Linux-based embedded devices. Vulnerabilities in BusyBox can have far-reaching consequences, affecting a wide array of devices. This research, driven by the extensive use of BusyBox, delved into its analysis. The study revealed the prevalence of older BusyBox versions in real-world embedded products, prompting us to conduct fuzz testing on BusyBox. Fuzzing, a pivotal software testing method, aims to …
array arxiv bug busybox can consequences crash cs.cr cs.se devices embedded embedded devices far fuzzing linux linux commands llm open-source software research reuse single software vulnerabilities
More from arxiv.org / cs.CR updates on arXiv.org
Proactive Detection of Voice Cloning with Localized Watermarking
2 days, 18 hours ago |
arxiv.org
NFT Wash Trading: Direct vs. Indirect Estimation
2 days, 18 hours ago |
arxiv.org
Backdoor Attack with Sparse and Invisible Trigger
2 days, 18 hours ago |
arxiv.org
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Senior Security Researcher - Linux MacOS EDR (Cortex)
@ Palo Alto Networks | Tel Aviv-Yafo, Israel
Sr. Manager, NetSec GTM Programs
@ Palo Alto Networks | Santa Clara, CA, United States
SOC Analyst I
@ Fortress Security Risk Management | Cleveland, OH, United States