Code Exposed by UNC Mappings and Virtual Paths Under IIS
Reported March 30, 2000 by Microsoft
According to Microsoft"s report on the matter, "If a virtual directory on an IIS server is mapped to a UNC share, and a request for a file in the directory contains one of several particular characters at the end, the expected ISAPI extension processing may not occur. The result is that the source code of the file would be sent to the browser.
There are significant restrictions that would increase the difficulty of exploiting this vulnerability:
NOTE: Proxy Server, Site Server, Site Server Commerce Edition and Microsoft Commercial Internet System run atop IIS. Customers using these products should apply the patch appropriate for the version of IIS they are running.
Reported by Microsoft