Microsoft Corporation has posted a fix for the serious security vulnerability in Windows NT 4.0 and Internet Information Server (IIS) that was announced earlier this week. The fix eliminates the vulnerability, which could allow denial of service attacks against an Windows NT Server running IIS or, under certain circumstances, allow code to be run on the server. An unlike the workaround announced earlier this week, the patch is fully supported.

For more information, and the patch download, please visit the Microsoft Security Web site