FYI.... from Oxygen..

Security Administrator mirrors (*) a recent survey carried out by Netcraft, which demonstrates that websites are more vulnerable than ever, due to recently reported problems with Internet Information Server (IIS) and Apache.

The survey of 38,807,788 Web servers, which was carried out in June, reveals that 23 million websites - 59.67% of the sample analyzed - run under Apache software and 28.96% run IIS. Furthermore, 45% of these IIS sites support '.htr' file mapping, meaning that they could be vulnerable to buffer overflow attacks when handling these files, even though Microsoft reported and fixed this problem on June 11.

This Netcraft survey also reveals that the Apache vulnerability, which could allow an attacker to remotely compromise the server, has been patched in 6 million Apache web sites. However, over 14 million servers are still vulnerable, although the problem was reported on June 17.