ODDFUZZ: Discovering Java Deserialization Vulnerabilities via Structure-Aware Directed Greybox Fuzzing. (arXiv:2304.04233v1 [cs.CR])

Java deserialization vulnerability is a severe threat in practice.
Researchers have proposed static analysis solutions to locate candidate
vulnerabilities and fuzzing solutions to generate proof-of-concept (PoC)
serialized objects to trigger them. However, existing solutions have limited
effectiveness and efficiency. In this paper, we propose a novel hybrid solution
ODDFUZZ to efficiently discover Java deserialization vulnerabilities. First,
ODDFUZZ performs lightweight static taint analysis to identify candidate gadget
chains that may cause deserialization vulner-abilities. In this step, ODDFUZZ
tries to locate all …

analysis aware concept deserialization discover efficiency false negatives fuzzing gadget hybrid identify java java deserialization may novel poc practice proof-of-concept researchers solution solutions static analysis taint analysis threat trigger vulnerabilities vulnerability