Patch Tuesday: Microsoft Will Not Patch a Flaw in Windows Server 2003 This Month – Or Ever

As Windows Server 2003 winds down, there's no functional reason to provide updates that would require a major architecture change.

Rod Trent

February 10, 2015

2 Min Read
Patch Tuesday: Microsoft Will Not Patch a Flaw in Windows Server 2003 This Month – Or Ever

Patch Tuesday is upon us once again, and with each monthly anniversary there's always a bullet point or two to highlight. If you've not seen the list of updates for February 2015, take a look through What's Headed Your Way for Microsoft Patch Tuesday.

This month, one glaring situation needs to be exposed. MS15-011 is a remote code execution vulnerability that Microsoft has deemed as critical. It affects all Windows versions from Server 2003 through Windows 8.1 and Windows Server 2012 R2. However, even though it does affect Windows Server 2003, Microsoft is not providing support to fix the flaw.

The bulletin explains the reasoning this way:

The architecture to properly support the fix provided in the update does not exist on Windows Server 2003 systems, making it infeasible to build the fix for Windows Server 2003. To do so would require re-architecting a very significant amount of the Windows Server 2003 operating system, not just the affected component. The product of such a re-architecture effort would be sufficiently incompatible with Windows Server 2003 that there would be no assurance that applications designed to run on Windows Server 2003 would continue to operate on the updated system.

This vulnerability requires that a user connect their computer to an untrusted network such as a Wi-Fi hotspot in a coffee shop; therefore, workstations that are connected to an untrusted network are most at risk from this vulnerability.

But, before you get up-in-arms over this, consider that Windows Server 2003 reaches end of life on July 14, 2015. Many companies are deeply embroiled in migrating away from the aged server version. Plus, a successful exploit requires connecting to an untrusted network, which many Windows Server 2003 administrators will never do.

So, while it seems like a strong stance, it's a logical one. But, it is good to be aware of, if for anything but to be extra careful with those Windows Servers until the migration is complete.

 

Read more about:

Microsoft

About the Author

Rod Trent

Rod Trent

See more from Rod Trent
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up

You May Also Like

Editor's Choice

a stressed employee at their laptop and collaboration icons gone amok
Unified Communications
Microsoft Teams Is Acting Up. What Can We Do?Microsoft Teams Is Acting Up. What Can We Do?
byBrien Posey
Sep 12, 2024
4 Min Read
person placing a block between two columns of blocks
IT Management
Data Skills Gap Is Hampering Productivity; Is Upskilling the Answer?Data Skills Gap Is Hampering Productivity; Is Upskilling the Answer?
byNathan Eddy
Sep 7, 2024
7 Min Read
data privacy quiz sample question above a desk
Data Privacy
Data Privacy Quiz: 20 Questions To Test Your KnowledgeData Privacy Quiz: 20 Questions To Test Your Knowledge
byIan Horowitz
Aug 30, 2024
1 Min Read
Exclusive ITPro Resources
See all ITPro Resources

Featured How Tos

A cartoon of a person sitting at a computer, with speech bubbles—one from the person saying Hello and one from the computer responding with Hello
PowerShell
PowerShell Speech Recognition: How To Set up Voice Commands and ResponsesPowerShell Speech Recognition: Set up Voice Commands and Responses
Migrating From VMware Guide cover
VMWare
Migrating From VMware: Guide to a Successful TransitionMigrating From VMware: Guide to a Successful Transition
a wall and fire with the words linux uncomplicated firewall (ufw) tutorial, configure and manage
Linux OS
Linux UFW (Uncomplicated Firewall) Configuration Made EasyLinux UFW (Uncomplicated Firewall) Configuration Made Easy
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up
Trending

Recent What Is

list of domains within the umbrella category of IT security
IT Security
What Is IT Security? Essentials of IT Security ExplainedWhat Is IT Security? Essentials of IT Security Explained
ITPro Today's tech careers quick reference guide cover
Career Management
Tech Careers: Quick Reference Guide to IT Job TitlesTech Careers: Quick Reference Guide to IT Job Titles