CVE-2000-0649
CVE-2000-0649
IIS 4.0 allows remote attackers to obtain the internal IP address of the server via an HTTP 1.0 request for a web page which is protected by basic authentication and has no realm defined.
Affected products
n/a · n/apublic PoCs found — 4
githubgithub.com/rafaelh/CVE-2000-0649★ 8githubgithub.com/Downgraderz/PoC-CVE-2000-0649★ 1githubgithub.com/stevenvegar/cve-2000-0649★ 0exploitdbwww.exploit-db.com/exploits/20096unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →