SQL Worm 5-22-2002 > Forums > Viruswarn Website

Viruswarn Website

Tuesday, February 07, 2012

Our sponsors

OS-Cubed, Inc.

WizardWrx

Periwinkle Communications

Nick Francesco

Users currently online

	Membership:
	Latest: kevin
	New Today: 0
	New Yesterday: 0
	Overall: 56

	People Online:
	Visitors: 5
	Members: 0
	Total: 5

Online Now:

Periwinkle Communications

Viruswarn banner

Home

Forums

Meet the Authors

Troubleshooting

Store

you are here: Forums

Welcome to the Viruswarning forums. All your original content has been ported to the new forums as well as new content and additional opportunities to interact with the authors of Viruswarn.com. You can always access old content at www.leedrake.com/forum . You may find some formatting was lost in the conversion and the older versions of the posts to be more readable....

But at least it's all here.

Enjoy!

Viruswarn Forums

Forums

Search

Forums > Viruswarning Forum > Viruswarning archive

Subject: SQL Worm 5-22-2002

Email me when someone replies to this thread.

You are not authorized to post a reply.

Author

Messages

Lee Drake
Posts:238

05/22/2002 5:34 PM
SANS has announced that there is a worm that is exploiting a well known hole in SQL Server to take over machines running SQL Server. This is similar to the NIMDA virus, but it's target is SQL instead of IIS. I know most of you don't run SQL Server, but if you are running EITHER SQL Server or MSDE be very sure that you have placed a password on the SA account. The SA Account defaults to requiring a password on SQL 2000, but on SQL 7 and lower it's not required. If you're a SQL administrator please check the following sites for additional detail: The microsoft patch that prevents this: http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS02-020.asp http://www.microsoft.com/security/security_bulletins/ms02020_sql.asp http://www.incidents.org/diary/diary.php?id=156 Most people probably are NOT running SQL Server themselves (though some Access users may be running MSDE). It would be wise to have your IT people check their servers for infection and be sure they're patched up - particularly if they're not behind a firewall. I'll do a more detailed briefing ASAP: Lee Drake, Moderator

You are not authorized to post a reply.

Forums > Viruswarning Forum > Viruswarning archive > SQL Worm 5-22-2002

ActiveForums 3.6

Register or Login

User Name:

Password:

Remember Login


Forgot Password ?

Copyright 2006 by OS-Cubed, Inc. Terms Of Use Privacy Statement