Posted by: DeepDotWeb
April 17, 2015
</div><p>Thank to the admin of our forum:</p>
MS15-034 / CVE-2015-1635
If you are running IIS, either stop (best practice) or patch YESTERDAY.
We already have a listing for fully working RCE exploit with quite convincing technical details to back the vendor’s claims.
We also know of at least 2 markets running IIS.
All the best,
The listing of the exploit on TheRealDeal: