Microsoft Leaves Windows 98, Me Users In Lurch Over Metafile Vulnerability


In an updated security advisory, Microsoft told Windows 98 and Windows Millennium users not to expect a patch against the ongoing Metafile vulnerability because the company's obligated only to fix "critical" bugs, and this one doesn't meet the bar.

Microsoft's advisory, now revised six times since its Dec. 28 debut, puts it clear to Windows 98 and Millennium customers.

"Although Windows 98, Windows 98 Second Edition, and Windows Millennium Edition do contain the affected component, at this point in the investigation, an exploitable attack vector has not been identified that would yield a Critical severity rating for these versions," the advisory read. "Per the support life cycle of these versions, only vulnerabilities of Critical severity would receive security updates." Security Pipeline | Microsoft Leaves Windows 98, Me Users In Lurch Over Metafile Vulnerability

Linked by shanmuga Friday, 6th January 2006 8:21PM