I guess we should find some of this old source code and test it for exploits to see what is true.
https://github.com/microsoft/ms-dos