Microsoft has issued a new roll-up patch for Internet Information Server 4.0 through 5.1 in security bulletin MS02-062. The update includes all previously released fixes for IIS; in addition, it also patches four new vulnerabilities. Most of these holes are low to moderate risk issues – none of them allow remote command execution or system compromise. You can download the IIS 4.0 fix here, IIS 5.0 here, and IIS 5.1 here.

(N-Stalker Security Force)