|
|
|
|
|
|
by AndrewStephens
3944 days ago
|
|
|
I used to work on a scanning SMTP/HTTP proxy and even back then it wasn't unknown for people to send crafted decompression bombs to attempt to crash the services. We handled it by estimating the total uncompressed size upfront (including sub archives) and throwing out anything with a suspiciously large compression ratio. I imagine that .pdf files are another avenue for mischief. They contain lots of chunks which may be compressed in varying ways. |
|
|