>>>>You should get the Hot Fix/Bug/Worm checking tool at:
>>>>
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=24168>>>
>>>That is only good for Windows 2000 server. What about those under NT? Do you know if something else is available for that OS?
>>
>>
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=30833>
>So, our default install didn't include Index Server. So, we do not have any need to upgrade, right?
>
>Thanks for your help
It appears you should install the patch...
From MS website:
Would Index Server or Indexing Service need to be running in order for the vulnerability to be exploited?
No. Although the functionality provided by idq.dll supports Index Server and Indexing Service, the .dll is installed whenever IIS is installed, and is exposed anytime IIS is running. Thus, even if indexing were not available on the server, the vulnerability would still be present as long as IIS were running on the machine.
Steve Gibson