Sponsor for PC Pals Forum

Author Topic: MS: Patching obsolete OSes gives 'false sense of security'  (Read 734 times)

Offline Reno

  • Established Member
  • ****
  • Posts: 1286
  • ø¤º° bob °º¤ø
Not to mention that users using out of date operating systems cut into microsofts bottomline. If linux is a plague to proprietary software then obsolete versions of windows is the cancer.

http://weblog.infoworld.com/techwatch/archives/008147.html

Quote
MS: Patching obsolete OSes gives 'false sense of security'
Filed under: Security

Microsoft is responding to the latest effort by a group of security researchers to patch a hole it its products. As TechWatch reported earlier today, ZERT, the Zeroday Emergency Response Team, has released a patch for a Virtual Markup Language (VML) hole in unsupported versions of Windows, including Windows '98 and some versions of Windows 2000.

In an e-mail response to TechWatch, Microsoft said, through its PR agency, Microsoft said that the company "is aware of third party mitigations that attempt to block exploitation of vulnerabilities in Microsoft software." The company "appreciate(s) the steps these vendors and independent security researchers are taking to provide our customers with mitigations," but doesn't vouche for ZERT's patch. Duh.

On the issue of patching unsupported OS's, though, Microsoft is a bit more stern. "These products have reached the point of architectural obsolescence. It would be irresponsible to convey a false sense of security by extending public support for these older products," the company said in an e-mail.

Maybe so, but I'm guessing enterprise networks with vulnerable '98 and W2K boxes will choose false security over no security at all.


Show unread posts since last visit.
Sponsor for PC Pals Forum