[原文]eEye SecureIIS versions 1.0.3 and earlier does not perform length checking on individual HTTP headers, which allows a remote attacker to send arbitrary length strings to IIS, contrary to an advertised feature of SecureIIS versions 1.0.3 and earlier.
SecureIIS does not perform length checks on each individual HTTP header variable. By sending a HTTP request with an unusually large header variable, a remote attacker can overflow a buffer to bypass the SecureIIS HTTP length checks. An attacker can use this vulnerability to exploit known IIS buffer overflows and possibly execute arbitrary code on the server.
Upgrade to version 1.0.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.