Security Fixes Not Assured

Important TCP/IP security vulnerabilities in Windows 2000 will not be fixed regardless of the fact that the OS remains in Extended support until 2010. Microsoft claims the only way to fix the problems is to make significant changes that would involve redesigning the TCP/IP features of the OS and might render applications incompatible with the updated OS. The incident illustrates that although OS versions nominally retain Microsoft support for 10 years, as time passes and OS architectures change dramatically, the likelihood decreases that Microsoft will fix even important problems.

Become a DOM member or log in to read the full report