VULHUB ™

A vulnerability has been discovered in Netscape Enterprise Server that may disclose the internal IP address or internal network name to remote attackers. This vulnerability can be exploited if an attacker connects to a host using HTTP(typically on port 80) and crafts a specially formed GET request. Netscape Enterprise Server will return an error message containing the internal IP address or internal network name of the server. It is believed that Netscape Enterprise Server behaves in this manner if the ServerName is not set.

A vulnerability has been discovered in Netscape Enterprise Server that may disclose the internal IP address or internal network name to remote attackers. This vulnerability can be exploited if an attacker connects to a host using HTTP(typically on port 80) and crafts a specially formed GET request. Netscape Enterprise Server will return an error message containing the internal IP address or internal network name of the server. It is believed that Netscape Enterprise Server behaves in this manner if the ServerName is not set.