CVE-2000-0649

LOW

—CVSS v3

2.6CVSS v2

62.99% EPSS (exploit probability)

CWE-200CWE

Description

IIS 4.0 allows remote attackers to obtain the internal IP address of the server via an HTTP 1.0 request for a web page which is protected by basic authentication and has no realm defined.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE