Vulnerability : Microsoft IIS Zero Day Still Open !

A vulnerability has been identified in the Microsoft Internet Information Services (IIS) where the server in incorrectly handling files with multiple extensions separated by the “;” character such as “malicious.asp;.jpg” as an ASP file.
This allows attackers to upload malicious executable’s on a vulnerable web server, bypassing file extension protections and restrictions ! ASP.Net is NOT affected