Low Rate DoS Attack to Monoprocess Servers

Gabriel Maciá-Fernández; Jesús Esteban Díaz Verdejo; Pedro García-Teodoro

Abstract:

In this work, we present a vulnerability in monoprocess or monothreaded servers that allows the execution of DoS attacks with the peculiarity that they are generated by low rate traffic. This feature makes the attack less vulnerable to detection by current IDS systems, which usually expect high rate traffic. The intruder can take advantage of some knowledge about the inter-output times in the server to build the attack. We have simulated and tested it in a real environment, obtaining worrying conclusions due to the efficiency achieved by the attack, with low effort from the attacker.

Research areas:

• Ethical hacking and digital forensics

Year:

2006

Type of Publication:

Article

Journal:

Lect. Notes in Computer Science

Volume:

3934

Pages:

43-57

ISSN:

0302-9743