I never realised you could see ASP contents that easily... yikes!
That one is about 2 years old, pretty rare to find IIS servers that still have that bug, but I've seen a couple (the code red virus caused a lot of servers to get updated).
Yep, code red certainly did a lot of "good" in that sense as well.
If anyone has Windows (any version) and uses it on a somewhat professional basis, I would recommend that you subscribe to Microsoft's Technet. You'll get security warnings such as the one I received this morning: