HTTP2: Microsoft Windows IIS HTTP2 Data Dribble Denial of Service
This signature detects attempts to exploit a known vulnerability against Microsoft Windows IIS. A successful attack can result in a denial-of-service condition.
Extended Description
Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
Affected Products
Nodejs node.js
Short Name
HTTP2:MS-IIS-DRIBBLE-DOS
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP2
Keywords
CVE-2019-9511 Data Denial Dribble HTTP2 IIS Microsoft Service Windows of
Release Date
10/01/2019
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
Sigpack Version
3590
False Positive
Unknown
Vendors
F5
Redhat
Mcafee
Fedoraproject
Synology
Opensuse
Apache
Oracle
Nodejs
Debian
Canonical
CVSS Score
7.8