Skip to main content

Tag: compression bomb

1 article

Server room with equipment and cables, highlighting a generic server rack in the foreground.

HTTP/2 Bomb Vulnerability Targets Major Web Servers with Remote DoS Exploit

A newly discovered HTTP/2 Bomb vulnerability can be exploited to launch a remote Denial of Service (DoS) attack on major web servers, taking advantage of a weakness in the default HTTP/2 configuration. This flaw cleverly combines a compression bomb and a Slowloris-style hold to target HPACK, HTTP/2's header-compression scheme.

Analyst 207