Gracias Adler por constante ayuda, tu dices algo así:

<%
FUNCTION corregirComillas( cadena )
strNuevaCadena = REPLACE( cadena, "'", "''")
strNuevaCadena = REPLACE(strNuevaCadena, "<", "")
strNuevaCadena = REPLACE(strNuevaCadena, ">", "")
strNuevaCadena = REPLACE(strNuevaCadena, "%", "")
strNuevaCadena = REPLACE(strNuevaCadena, "*", "")
strNuevaCadena = REPLACE(strNuevaCadena, "INSERT INTO", "")
strNuevaCadena = REPLACE(strNuevaCadena, "DELETE FROM", "")
strNuevaCadena = REPLACE(strNuevaCadena, "IFRAME", "")
strNuevaCadena = REPLACE(strNuevaCadena, "=","")
strNuevaCadena = REPLACE(strNuevaCadena," or ","")
strNuevaCadena = REPLACE(strNuevaCadena," and ","")
strNuevaCadena = REPLACE(strNuevaCadena,")","")
strNuevaCadena = REPLACE(strNuevaCadena,"(","")
strNuevaCadena = REPLACE(strNuevaCadena,"having ","")
strNuevaCadena = REPLACE(strNuevaCadena,"group by","")
strNuevaCadena = REPLACE(strNuevaCadena,"union select sum","")
strNuevaCadena = REPLACE(strNuevaCadena,"union select min","")
strNuevaCadena = REPLACE(strNuevaCadena,"--","")
strNuevaCadena = REPLACE(strNuevaCadena,"select ","")
strNuevaCadena = REPLACE(strNuevaCadena,"insert ","")
strNuevaCadena = REPLACE(strNuevaCadena,"update ","")
strNuevaCadena = REPLACE(strNuevaCadena,"drop ","")
strNuevaCadena = REPLACE(strNuevaCadena,"-shutdown","")
corregirComillas = strNuevaCadena
END FUNCTION
%>