Your IP: Unknown · ISP: Unknown · Your Status: Unknown

Skip to main content

PricingToggle submenu for Pricing
Why NordVPN?Toggle submenu for Why NordVPN?
Why NordVPN?
Features
What is a VPN?
Servers in 111 Countries
Fastest VPN
Money-Back Guarantee
No User Tracking
MeshnetNew
Threat ProtectionNew
Dedicated IP
Dark Web Monitor
Multiple Devices
All Features
Download VPNToggle submenu for Download VPN
Desktop
Mobile
Extensions
Windows
macOS
Linux
Android
iOS
Chrome
Firefox
Edge
All Apps
Resources
Toggle submenu for Resources
Get Help
Learn
Support Center
Contact Us
Blog
Cybersecurity Hub
Research Lab
About NordVPN
For BusinessToggle submenu for For Business
Secure your business against advanced cyber threats.
Go to Business VPN
Pricing
Increase the security and privacy of your business today.
See Pricing

XML bomb

XML bomb

(also billion laughs attack)

XML bomb definition

An XML bomb is a type of DDoS attack where a small piece of code is sent to overwhelm the program that parses XML files and crash the server. It works similarly to a zip bomb: when an XML parser tries to process the message, nested data entities inside of it start growing exponentially and crash the server.

How to stop an XML attack

Limit the number of characters the entity can expand.
Limit the memory allocated to a parser.

Further reading

The logic bomb: What it is and how to prevent it

Ultimate digital security