Windows NT 4.0 Security Patch: Malformed Hit-Highlighting Argument Vulnerability

Microsoft has released a patch that eliminates two security vulnerabilities in Microsoft Index Server. The first vulnerability could allow a malicious user to view - but not to change, add or delete - files on a Web server. The second vulnerability could reveal where Web directories are physically located on the server. This version is the first release on CNET Download.com.