By all means, let's not hold the software manufacturers, uh Microsoft, that market these security hole riddled packages accountable.
Let's blame the guy/gal doing their level best given budget and staffing restraints to guard the gates against any number and type of asymmetric attacks.