Tag: DoS Attacks

New HTTP/2 Vulnerability Exposes Web Servers to DoS Attacks
News

New HTTP/2 Vulnerability Exposes Web Servers to DoS Attacks

Denial-of-service (DoS) attacks can be carried out by taking advantage of the HTTP/2 protocol's CONTINUATION frame, according to recent study. Security researcher Bartek Nowotarski, who disclosed the vulnerability to the CERT Coordination Center (CERT/CC) on January 25, 2024, has dubbed the approach HTTP/2 CONTINUATION Flood. CERT/CC stated in an advisory on April 3, 2024, that a large number of HTTP/2 implementations do not appropriately limit or sanitize the quantity of CONTINUATION frames transmitted inside a single stream. An attacker who is able to submit packets to the target server can send a stream of CONTINUATION frames, which either append to the header list read more New HTTP/2 Vulnerability Exposes Web Servers to DoS Attacks. Get up to date on the latest cybersecur...