Select your language from the drop-down list below and
Read Me First
This update resolves the "Session ID Cookie Marking"
security vulnerability in Internet Information Server (IIS)
4.0. When using .asp files, IIS cannot differentiate between
secure and non-secure Session ID cookies (small data files
that identify you to a Web site as you move around within that
site). This update enables .asp files to mark Session ID
cookies as "secure." Download now to prevent a malicious user
from connecting to the Web page you are viewing, assuming your
identity, and placing orders or viewing your personal
Note This update has been revised as of November 20,
2000. Microsoft recommends that you install this version of
For more information about this vulnerability, please read
Microsoft Security Bulletin MS00-080.
System Requirements This update applies to
Internet Information Server 4.0.
How to download and install
- Select your language from the drop-down list above.
- Click Next.
- Follow the instructions on your screen.
Note Some languages also include a symbols package
for this update. Recommended for system administrators and
other advanced users, the symbols package is used for
diagnosing Windows NT® 4.0 system problems and is not required
for proper operation of your computer.
How to use
Restart your computer to complete the installation.
How to uninstall
- Click Start, point to Settings, and then
click Control Panel.
- Double-click Add/Remove Programs.
- Select Windows 4.0 Hotfix [See Q274149 for more
information] and click Add/Remove to uninstall.