This indicates an attack attempt to exploit a Remote Code Execution in IIS.
The vulnerability is due to a backdoor that stealthily monitor all HTTP requests and recognize specially formatted HTTP requests sent by the attacker. An attacker needs to gain access to the Windows system running the IIS server by some other means.

affected-products-logoAffected Products

IIS all

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary code within the context of the target system

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.

Version Updates

Date Version Detail
2023-02-28 0.00342

CVE References