IIS patches


Microsoft released 2 patches yesterday which are IIS related.

MS06-033: Vulnerability in ASP.NET Could Allow Information Disclosure (917283)
Severity: Important
Only affecting – .NET Framework 2.0

MS06-034: Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Allow Remote Code Execution (917537)
Severity: Important
If you are using ASP for IIS 5.0, 5.1 and 6.0

Download the patches here:

See Microsoft for a complete list of July security bulletins.