Solved

Web Server PROPFIND Method Internal IP Disclosure

Posted on 2011-03-01
2
1,808 Views
Last Modified: 2013-12-06
The remote installation of IIS leaks a private IP address through the
WebDAV interface. This may expose internal IP addresses that are
usually hidden or masked behind a Network Address Translation (NAT)
Firewall or proxy server.
This is typical of IIS installations that are not configured properly
please suggest to resolve this risk.
0
Comment
2 Comments
 
LVL 25

Accepted Solution

by:
Tony Johncock earned 500 total points
ID: 35006272
Well I don't know specifically for IIS 7, but earlier versions used to have the following workaround:

adsutil.vbs set w3svc/UseHostName True

Bear in mind though that I've heard reports of it breaking OWA.

0
 

Author Comment

by:Yogesh_Exchange_Expert
ID: 35024278
if we disable webdav then it will resolve the issue or not?
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains how to install and use the NTBackup utility that comes with Windows Server.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question