VulnScan – Automated Triage and Root Cause Analysis of Memory Corruption Issues 

VulnScan – Automated Triage and Root Cause Analysis of Memory Corruption Issues 

The Microsoft Security Response Center (MSRC) receives reports about potential vulnerabilities in our products and it’s the job of our engineering team to assess the severity, impact, and root cause of these issues. In practice, a significant proportion of these reports turn out to be memory corruption issues. In order to root cause these issues, an MSRC security engineer typically needs to analyze the crash and try to understand what went wrong.