OSVDB-630: IIS may reveal its internal or real IP in the Location header via a request to the /images directory. The value is "http://<ipaddress>/images/".
A misconfigured IIS server sometimes leaks its internal IP address in a header field returned after a specially crafted GET or HEAD request. This allows attackers to learn more about your internal network.
C:\Inetpub\AdminScripts> cscript.exe adsutil.vbs set w3svc/1/SetHostName <Hostname>