OSVDB ID: 630

Title: Microsoft IIS Multiple Malformed Header Field Internal IP Address Disclosure

Info

Disclosure

Jul 13, 2000

Discovery

Unknown

Dates

Exploit

Jul 13, 2000

Solution

Unknown

Description

Microsoft IIS contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when attempting to access an area protected via basic HTTP authentication without providing realm information, making a request without a host: header, or by trying to access a resource that has been moved (302). This may disclose the internal IP address or network name in the response header resulting in a loss of confidentiality.

Classification

Location: Remote / Network Access
Attack Type: Information Disclosure
Impact: Loss of Confidentiality
Exploit: Exploit Public
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: Change the w3svc/UseHostName value (from False to True) in the metabase This is done my using the adsutil.vbs ot manually change values within the metabase.

Products

Microsoft Corporation	IIS	4.0
		3.0
		2.0
		5.0
		5.1
		6.0

References

Bugtraq ID: 1499
CVE ID: 2000-0649 (see also: NVD)
ISS X-Force ID: 5106
Microsoft Knowledge Base Article: 834141 Q218180
Mail List Post: http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0025.html
Other Advisory URL: http://osvdb.org/ref/00/00630-v6.txt

Credit

Dougal Campbell - dougalGUNTERS.ORG -

Direct URL: http://osvdb.org/630

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

IIS

References

Credit