June 2018
Intermediate to advanced
294 pages
7h 5m
English
|
Threat Description |
The application will be temporarily unavailable or unusable. |
|
Threat Target |
Application operations. |
|
Attacker Steps |
An attacker can send a huge number of requests aiming to bring the site down. |
|
Counter-measure |
Putting a threshold in the application configuration file or web server. |
|
Existing Counter-measure |
Production Servers Load Balancing. |
The DREAD report is as follows:
|
DREAD
|
Details
|
Score /10
|
|
Damage |
The website will be inaccessible. |
8 |
|
Reproducibility |
Can be reproduced any time. |
8 |
|
Exploitability |
A script kiddie can execute it. |
8 |
|
Affected Users |
Between 100 and probably more than 1,000. |
7 |
|
Discoverability |
Anyone ... |
Read now
Unlock full access