The reason I ask is because 2 or 3 years ago I was running IIS on a windows 2000 machine and my site got hacked because of a hole and it seems like I remember having to download a patch for it seperatly to fix the problem.
Just wanting to make sure that I am safe now just running the normal windows update.