Microsoft has finally revealed that they are working on a patch update for the recently revealed bug in the FTP Service in Microsoft Internet Information Services.

This bug is present in IIS 5, IIS 5.1 and IIS 6.

The company said in a security advisory:

The vulnerability could allow remote code execution on affected systems that are running the FTP service and are connected to the Internet. Microsoft is aware that detailed exploit code has been published on the Internet for this vulnerability. Microsoft is not currently aware of active attacks that use this exploit code or of customer impact at this time. However, Microsoft is actively monitoring this situation to keep customers informed and to provide customer guidance as necessary.