Application Denial of Service attacks tend to exploit flaws in application design/architecture & implementation to prevent legitimate access to victim’s services
Application Denial of Service has 2 typical types: Account Lockout & Database Slowdown
Application developers should implement a strong positive validation mechanism at the server side, capable of filtering out malicious code/scripts from the user input.
Use principle of full privilege to provide grant access to a service/resource in the web application to the end users/clients