As you may know, Microsoft discontinued support for Windows XP and Windows Server 2003 on April 8, 2014 and July 14, 2015 respectively. Continued operation of unsupported software is risky because any new bugs and/or security vulnerabilities cannot be fixed.
On July 14, 2015, Microsoft released a security bulletin (MS15-077) for the Windows Adobe Type Manager Library that affects all versions of Windows. On July 20, 2015, Microsoft released an updated security bulletin (MS15-078) for this issue with a "Critical" severity rating as the vulnerability can be remotely exploitable, and exploits have been discovered on the public Internet.
Due to the nature of the vulnerability and its significant threat potential, Jason Testart, Director Information Security Services, has directed the IST Security Operations Centre (SOC) to be more aggressive with the removal of Windows XP and Windows Server 2003 computers that are detected on the campus network.
Effective August 4, 2015, any detection of Windows XP/Server 2003 clients accessing off-campus web resources will be treated as a security breach, as defined by Policy 46. Escalation of security incidents will follow the standard Computer Security Incident Response Procedure.
Questions or concerns? Please contact the IST Security Operations Centre, firstname.lastname@example.org.