As you may be aware, Microsoft is ending support for Windows Server 2003 on July 14, 2015.
Per PCI DSS Requirement 6, systems which handle card data must be kept up-to-date with vendor-supplied patches. As Microsoft will no longer be creating patches, systems dependent on Windows Server 2003 may no longer be in compliance with PCI DSS after July 14, 2015.
Additionally, Windows Server 2003 does not support TLS 1.1 or TLS 1.2. The latest version of the PCI DSS prohibits the use of early TLS, which in this context refers to TLS 1.0.
Microsoft has a Migration Planning Assistant which may help you with the process of moving to a more up-to-date version of Windows.
--
"Move fast and break things," out. "Move carefully and fix what you break," in.
