|
Posted by Alun Jones on February 4, 2008, 12:51 pm
Please log in for more thread options Yay - you get a freebie. If a supported piece of software is absent from the
Affected Software list, it is because the current belief is that the
software is not vulnerable (occasionally, there are oversights - Small
Business Server and Windows Home Server appear to be most frequently
affected by these oversights), but if an unsupported piece of software is
absent from the list, well, that's just normal - unsupported software is not
generally inspected against new vulnerability reports.
Alun.
~~~~
> Alun
> Curious, the list of affected OS includes windows 2000 for that bulletin.
> That looked like it was retired.
>
> MC
>
>>> Dumb question, but the bulletin states it affects windows server 2003
>>> sp1 and sp2. What about 2003 server no SP?
>>
>> This is what "not supported" means. As of April 10 last year, Server 2003
>> unless you pay for Extended support (which is around $4000 per incident,
>> at least at the time of the DST changes), Microsoft isn't going to spend
>> the time to see whether or not this affects an unsupported version of the
>> OS.
>>
>>> We have a few where SP1 broke a critical app and the vendor advised us
>>> not to apply SP1. This server is not exposed to the public internet.
>>> and everything works swell without the SP.
>>
>> By now your vendor should have provided you with a fix, because right now
>> they are suggesting that you run on a version of Windows that isn't
>> supported by Microsoft.
>>
>> Alun.
>> ~~~~
>>
>
>
| 
XML Sitemap