<div>
Do you know of a specific CVE which is a high finding which is unpatched?
</div>


Do you know of a specific CVE which is a high finding which is unpatched?

<div>
As I said, no one is tracking server 2003 vulnerabilities any more. We do not have any around to even test.
</div>


As I said, no one is tracking server 2003 vulnerabilities any more. We do not have any around to even test.

<div>
<div class="content wysiwyg-content">
Hi,<br />
I known that Windows 2003 is past end of life, but is there known high level issues that have not been patched by Microsoft for this OS and IIS version?<br />
<br />
Thanks.
</div>
</div>


Hi,
I known that Windows 2003 is past end of life, but is there known high level issues that have not been patched by Microsoft for this OS and IIS version?

Thanks.

Windows 2003 end of life... known open vulnerablities?

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).

Windows Server 2003

IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.