MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
flaw
Search

'MadeYouReset' HTTP/2 flaw lets attackers DoS servers

Thursday August 14, 2025. 07:39 PM , from TheRegister
Researchers had to notify over 100 vendors of flaw that builds on 2023's Rapid Reset with neat twist past usual mitigations
Security researchers Gal Bar Nahum, Anat Bremler-Barr, and Yaniv Harel have published details of a 'common design flaw' in implementations of the HyperText Transfer Protocol 2 (HTTP/2) allowing those with ill intent to create 'massive Denial of Service attacks'.…
Read more at TheRegister
https://go.theregister.com/feed/www.theregister.com/2025/08/14/madeyoureset_http2_flaw_lets_attacker

Related News

flaw No more fake news: Google now lets you prioritize El Reg, others in search results TheRegisterAug 13
http BlackSuit ransomware crew loses servers, domains, and $1m in global shakedown TheRegisterAug 12
servers This Polish trailer park LARP experience lets you roleplay the death of the American Dream for 390 euros BoingBoingAug 11
dos [$] StarDict sends X11 clipboard to remote servers LWN.netAug 11
researchers Metal Gear Solid V co-op mod lets you sneak with friends BoingBoingAug 7
attackers Foxconn says EV sales are so slow it's converting a factory to build AI servers instead TheRegisterAug 5
lets Cursed Switch 2 accessory lets you eat fries while you game BoingBoingAug 4
flaw Attackers exploit old vulnerabilities as zero-day exploits surge BetaNewsAug 4
http Dedicated servers outpace public clouds for AI InfoWorldAug 1
servers Servers hated Mondays until techie quit quaffing coffee in their company TheRegisterAug 1
dos Companies pay multiple ransoms as attackers step up threat levels BetaNewsJul 31
researchers Amazon Invests In 'Netflix of AI' Start-Up Fable, Which Lets You Make Your Own TV Shows SlashdotJul 31
attackers Enterprises neglect AI security – and attackers have noticed TheRegisterJul 30
lets Tech CEO's Negative Coverage Vanished from Google via Security Flaw SlashdotJul 30
flaw Google patches Gemini CLI tool after prompt injection flaw uncovered InfoWorldJul 29
http Aeroflot aeroflops over 'IT issues' after attackers claim year-long compromise TheRegisterJul 28
servers UpDownTool lets you move from Windows 11 to Windows 10 in just 5 clicks -- without losing any data BetaNewsJul 28
dos Did a Vendor's Leak Help Attackers Exploit Microsoft's SharePoint Servers? SlashdotJul 27
researchers Stack Exchange Moves Everything to the Cloud, Destroys Servers in New Jersey SlashdotJul 26
attackers No login? No problem: Cisco ISE flaw gave root access before fix arrived, say researchers TheRegisterJul 24
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Aug, Thu 14 - 23:43 CEST