The NSA, Microsoft, and others are warning of the need to immediately patch older versions to Windows to be current through the MAY 2019 Patch Tuesday updates, including even XP and Win2003 have special patches because they are out of active support    

Windows 7, XP, and other editions of Windows Server 2003 & 2008 all should be patched as quickly as possible, due to high potential of a dangerous internet worm being developed.

QUOTE:   The National Security Agency (NSA) has released a cybersecurity advisory for CVE-2019-0708—a vulnerability dubbed BlueKeep. Although Microsoft has issued a patch, potentially millions of machines are still unpatched and remain vulnerable.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review NSA’s news release and advisory, Microsoft Security Response Center’s “A Reminder to Update Your Systems to Prevent a Worm,” and Microsoft Customer Guidance for CVE-2019-0708. CISA recommends patching the affected operating systems: