HTTP2: Microsoft Windows IIS HTTP2 Reset Flood Denial of Service
This signature detects attempts to exploit a known vulnerability against Microsoft Windows IIS Server. A successful attack can result in a denial-of-service condition.
Extended Description
Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both.
Affected Products
Nodejs node.js
Short Name
HTTP2:RESET-FLOOD-DOS
Severity
Major
Recommended
False
Recommended Action
None
Category
HTTP2
Keywords
CVE-2019-9514 Denial Flood HTTP2 IIS Microsoft Reset Service Windows of
Release Date
09/16/2019
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
Sigpack Version
3590
False Positive
Occasionally
Vendors
Oracle
F5
Redhat
Nodejs
Fedoraproject
Synology
Opensuse
Mcafee
Apache
Netapp
Debian
Canonical
CVSS Score
7.8