【摘要】 Java语言是最为流行的编程语言之一,拥有非常大的用户群,其安全问题十分重要,其中JRE Native漏洞逐渐成为研究热门。本项研究基于符号执行技术提出一种寄存器符号化监测方法,选取符号执行平台S2E作为漏洞挖掘工具,并且实现了针对JRE Native漏洞挖掘的辅助插件SymJava和SymRegMonitor,基于OpenJDK和Oracle JRE逆向代码进行源代码白盒审计并构建了用于进行漏洞挖掘的Java测试用例,最后对36个调用Java Native API的Java测试用例进行测试,发现了6个JRE Native安全隐患,其中2个可被攻击者恶意利用。更多还原

【Abstract】 With enormous user group,Java is one of the most popular coding languages,So its security issue is of much importance,and among which the JRE native vulnerability mining becomes the even more hot research topic. Register monitoring is an approach for fuzzing. This paper gives means of symbolic register monitoring based on symbolic execution technology. Symbolic execution framework S2E is chosen as the tool for vulnerability mining,while SymJava and SymReg Monitor are developed as the assistant plugins on S2E. Java test cases for vulnerability mining are constructed through source code audit of OpenJDK and reversion code of Oracle JRE. The test indicates 6 JRE native hidden dangers in 36 test cases based on Java Native API,among which 2 vulnerabilities could be viciously exploited by the attacker.更多还原