Updated:  May 15, 2001

Status

Affected

Vendor Statement

See http://www.microsoft.com/technet/security/bulletin/MS01-026.asp.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

This vulnerability has characteristics very similar to VU#111677, which has been widely exploited. We very strongly encourage IIS administrators to update as quickly as possible.