CVE-2000-0649
published 2000-07-13CVE-2000-0649: IIS 4.0 allows remote attackers to obtain the internal IP address of the server via an HTTP 1.0 request for a web page which is protected by basic…
low2.6CVSS 3.1
AVNACHAuNCPINAN
EXPLOIT
IIS 4.0 allows remote attackers to obtain the internal IP address of the server via an HTTP 1.0 request for a web page which is protected by basic authentication and has no realm defined.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_information_server | — | — |
| microsoft | internet_information_server | — | — |
| microsoft | internet_information_services | — | — |
| microsoft | internet_information_services | — | — |