Description
IIS 4.0 does not properly restrict access for the initial session request from a user's IP address if the address does not resolve to a DNS domain, aka the "Domain Resolution" vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin Facebook Button by BestWebSoft Cross-Site Scripting (2.53)
WordPress Plugin MoodThingy Mood Rating Widget SQL Injection (0.9.1)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0701)
OpenSSL Improper Verification of Cryptographic Signature Vulnerability (CVE-2025-15469)
Moodle Improper Authentication Vulnerability (CVE-2025-3627)