Microsoft IIS Tilde Character Information Disclosure Vulnerability

This host is running Microsoft IIS Webserver and is prone to information disclosure vulnerability.
Successful exploitation will allow remote attackers to obtain sensitive information that could aid in further attacks. Impact Level: Application
No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.
Microsoft IIS fails to validate a specially crafted GET request containing a '~' tilde character, which allows to disclose all short-names of folders and files having 4 letters extensions.
Microsoft Internet Information Services versions 7.5 and prior