Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Internet Information Services Other Vulnerability - CVE-2005-2678 - Vulnerability Database
Internet Information Services

Internet Information Services Other Vulnerability - CVE-2005-2678

Medium
Reference: CVE-2005-2678
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2005-2678
Title: Internet Information Services Other Vulnerability
Overview:

Microsoft IIS 5.1 and 6 allows remote attackers to spoof the SERVER_NAME variable to bypass security checks and conduct various attacks via a GET request with an http://localhost URI which makes it appear as if the request is coming from localhost.