Pixel Flood Attack

 In Pixel Flood Attack, 

An attacker attempts to upload a file with a large pixel size that results in consuming server resources in a way that the application may end up crashing. This causes a DoS (Denial of Service) Attack when the server tries to handle the image.


How to test for this vulnerability?

In order to exploit Pixel Flood Attack, one can try the following steps:


1:) Navigate to https://www.resizepixel.com/ and resize an image with 64250*64250px.

2:) Go to the vulnerable application having the option to upload an image file.

3:) Upload the file generated from “step-1” and observe the server’s response.


4:) If the server takes too long to respond or if the application became inaccessible, confirm with another device, if the lag/accessibility issue happens, the application is vulnerable to pixel flood attack. (If the website’s server gets timed out, it means that the server is vulnerable).

             Thank you  !

                 Maniesh Neupane🇳🇵

Twitter:    https://twitter.com/ManieshNeupane














Comments

  1. no website I accessed can resize an image to this size

    ReplyDelete

Post a Comment

Popular posts from this blog

Two Factor Authentication ! [2FA]