SOAP Coercive Parsing
Variants:
Direct
Vector Type:
Attack
Relevance:
Generic
Layer:
Application-Level
Platforms:
Any
Target Type:
Web Application, Web Service
Affected Mechanisms:
Web Server Configuration, Hardening
Invented In:
15/02/2007
Added In:
26/12/2014
Vector Operation Method:
An attack aimed at exhausting the server resources by sending SOAP messages with an unlimited amount of opening tags in the SOAP Body.
