Patent · US Active

Detecting an attempt to exploit a memory allocation vulnerability

US9916443B1 · kind B1 · utility

11Cited by

5References

31Claims

0Family size

Assignee

Palo Alto Networks, Inc. · US

Inventors

Bo Qu · Suzhou, CN
ChienHua Lu · Santa Clara, US
Tao Yan · Dongguan, CN
Jiangxia Liu · Cupertino, US

Key dates

Filing date	Jul 21, 2015
Grant date	Mar 13, 2018
Priority date	—
Expiry date	Sep 19, 2035

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Various techniques for detection of malware that attempt to exploit a memory allocation vulnerability are disclosed. In some embodiments, a system, process, and/or computer program product for detecting an attempt to exploit a memory allocation vulnerability includes receiving a malware sample; monitoring an array operation performed by the malware sample using a memory monitoring component; and determining whether the array operation performed by the malware sample is suspicious. For example, an array operation, such as a vector operation performed by an application that is executed using an ActionScript virtual machine, can be monitored to detect any suspicious vector operations.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.