A new methodology of analyzing security vulnerability for network services

The explosively increasing use of Internet has brought to the emergence and dissemination of new network worms and viruses. The techniques exploited by those malicious software codes become so sophisticated that even newly updated anti-virus engines often fail to detect the existence of the codes successfully. One of the security defects in network services often exploited by the codes is the vulnerability due to buffer overflow [1].