eEye has a security notice. "Attackers that leverage the vulnerability can, from a remote location, gain full SYSTEM
level access to any server that is running a default installation of Windows NT 4.0,
Windows 2000, or Windows XP and using Microsoft's IIS Web Server software."
June 18, 2001