HTTP Decompression Bombs

Interesting find here. Just FYI.

Tags: , , ,


One Response to “HTTP Decompression Bombs”

  1. Neurotech says:

    GZIP compression bombs.
    How to clusterfuck any GZIP-enabled application. Basically, you can craft a GZIP-encoded HTTP response that’ll deflate from a few bytes to a few hundred megabytes due to the format of the compression. Via Fun With Wordage….

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

By submitting a comment here you grant this site a perpetual license to reproduce your words and name/web site in attribution.