IIS WebDav ScStoragePathFromUrl Remote Code Execution Exploit Update

A buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <http://" in a PROPFIND request, as exploited in the wild in July or August 2016. This update adds support for "Connect to" agent connection method and more supported platforms.
Exploit type: 
Vulnerabilty ID: 
Product Version: 
Released Date: 
Tuesday, April 4, 2017 - 19:00