Vulnerability Development: cobol language vulnerabilities

[Kevin Partridge <kgp () nethere com>]

Hello all.

I'm wondering if anyone might be able to point me in the right
direction. I'm doing a paper on language issues in secure coding. A lot
has been written covering C/C++. And java gets good coverage for its
sandboxing. Almost no coverage of other languages exists out there. I've
found some good information on Ada (totally by accident). But I'd like
to know where I could start with Cobol. I've already gotten the
standard.

I plan to try and implement some exploitable C code via Cobol. To make
educated choices on what exploits to try I need to know a lot more about
Cobol. I have no experience in the language but I do have some
knowledgeable veterans at my disposal for coding assistance. They are
not security gurus, however.

Any direction would be greatly appreciated.

Thanks.

Kevin