Explore the vulnerabilities in ICU (International Components for Unicode) libraries through serialized fuzzing techniques in this 36-minute Black Hat conference talk. Delve into the widely used C/C++ and Java libraries that provide Unicode and Globalization support for software applications. Learn about ICU's portability and its ability to deliver consistent results across platforms and programming languages. Discover how presenter Yuan Deng approaches the challenge of identifying potential security flaws in this mature and extensively utilized software component. Gain insights into advanced fuzzing methodologies specifically tailored for uncovering vulnerabilities in internationalization and Unicode handling code.
International Problems - Serialized Fuzzing for ICU Vulnerabilities
Overview
Syllabus
International Problems: Serialized Fuzzing for ICU Vulnerabilities
Taught by
Black Hat
Related Courses
-
The Art of File Format Fuzzing
-
Fuzzing Android - A Recipe for Uncovering Vulnerabilities Inside System Components in Android
-
Installing and Using Jackalope Fuzzer on MacOS - Finding Vulnerabilities in Simple Programs
-
In-Field Emulation and Fuzzing of PLCs to Uncover the Next Zero-Day Threat in Industrial Control Systems
-
Practical File Format Fuzzing
-
ClusterFuzz - Fuzzing at Google Scale
