There's a new exploit for Windows 2003 Server making the rounds. There's an alert about it on Securityfocus and this site claims to have working exploit code: http://www.aphr0.net