Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Internal IP Address Disclosure

Info

Synopsis

The remote web server has not properly configured its 'Host' settings.

Description

The remote web server has not properly configured its 'Host' settings. The server discloses its internal IP addresses within HTTP headers. Such information can give an attacker useful information regarding the IP address scheme of the internal network. This may aid the attacker in future attacks.

Solution

Ensure that the server has a properly configured hostname. Note: PVS only reports on the first occurence of this item on a web server. Parse your entire web source for similar occurrences.