Security Alerts - December 2009
Recently, Microsoft released the December security bulletin, and one of the patches related to IIS. Meant to blog about this earlier but Nazim from IIS team beat me to it :) Been seeing lot of discussions online and patch management related mailing list. So in short, if you are seeing issue on W2k3 IIS 6 after applying the fix via KB973919, you need to repatch SP2 as described in KB2009746.
Update 17th Dec 2009
More details about the fix @ iis.net
And it's been confirmed that MS has repackaged the fix, read more here.
More updates 22th Dec 2009
MS Support team released a simple VBS script to check if you have 'broken' sp2 IIS box, get it here.
Also if you getting the fix via Windows Update, the logic now doesn't install the patch if you have a broken sp2 machine.