Patent · US Active

Detecting an attempt to exploit a memory allocation vulnerability

US10216931B2 · kind B2 · utility

0Cited by

5References

21Claims

0Family size

Assignee

Palo Alto Networks, Inc. · US

Inventors

Bo Qu · Suzhou, CN
ChienHua Lu · Santa Clara, US
Tao Yan · Dongguan, CN
Jiangxia Liu · Cupertino, US

Key dates

Filing date	Feb 1, 2018
Grant date	Feb 26, 2019
Priority date	—
Expiry date	Feb 1, 2038

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Various techniques for detection of malware that attempt to exploit a memory allocation vulnerability are disclosed. In some embodiments, a system, process, and/or computer program product for detecting an attempt to exploit a memory allocation vulnerability includes receiving a malware sample; monitoring an array operation performed by the malware sample using a memory monitoring component; and determining whether the array operation performed by the malware sample is suspicious. For example, an array operation, such as a vector operation performed by an application that is executed using an ActionScript virtual machine, can be monitored to detect any suspicious vector operations.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.