More security problems for Microsoft. This one lets any user with a browser view the source code of an ASP file which could reveal database passwords among other things. Take a look at the ZDnet article linked above and change the default settings on your IIS server.