EIP-2026-118789

PRE-CVE

Microsoft IIS 4.0/5.0/6.0 - Internal IP Address/Internal Network Name Disclosure

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118789. PoCs published by Marek Roy.

AI-analyzed exploit summary This is a writeup describing an information disclosure vulnerability in Microsoft IIS where a crafted GET request can leak internal IP addresses or network names via a 302 Object Moved error message. The provided example is a simple HTTP request demonstrating the exploit.

Description

Microsoft IIS 4.0/5.0/6.0 - Internal IP Address/Internal Network Name Disclosure

Exploits (1)

exploitdb WRITEUP VERIFIED
by Marek Roy · textremotewindows
https://www.exploit-db.com/exploits/21057

This is a writeup describing an information disclosure vulnerability in Microsoft IIS where a crafted GET request can leak internal IP addresses or network names via a 302 Object Moved error message. The provided example is a simple HTTP request demonstrating the exploit.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Microsoft IIS (version not specified)
No auth needed
Prerequisites: Network access to the target IIS server · HTTPS or HTTP service running on the target
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026