RE: MS SQL WORM IS DESTROYING INTERNET BLOCK PORT 1434!

From: trent dilkie (trentat_private)
Date: Mon Jan 27 2003 - 19:04:59 PST

Next message: Cisco Systems Product Security Incident Response Team: "Cisco Security Advisory: Cisco Security Advisory: Microsoft SQL Server 2000 Vulnerabilities in Cisco Products - MS02-061"

Previous message: Martin Schulze: "[SECURITY] [DSA 245-1] New dhcp3 packages fix potential network flood"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Symantec has posted a new version (1.0.3) that correctly identifies an
unpatched MSDE installation.

Thanks to David @ Symantec for following up with me, the tool can be
downloaded at:
http://securityresponse.symantec.com/avcenter/venc/data/w32.sqlexp.worm.remo
val.tool.html

Trent.

-----Original Message-----
From: trent dilkie [mailto:trentat_private] 
Sent: Monday, January 27, 2003 12:46 PM
To: 'bugtraqat_private'
Subject: RE: MS SQL WORM IS DESTROYING INTERNET BLOCK PORT 1434!



I just got a confirmation from Symantec. The fixSQLex.exe tool

 (
http://securityresponse.symantec.com/avcenter/venc/data/w32.sqlexp.worm.remo
val.tool.html ) 

DOES NOT DETECT or fix MSDE, only SQL Server.  They are working on an
update, it should be posted today.

Trent.

Next message: Cisco Systems Product Security Incident Response Team: "Cisco Security Advisory: Cisco Security Advisory: Microsoft SQL Server 2000 Vulnerabilities in Cisco Products - MS02-061"
Previous message: Martin Schulze: "[SECURITY] [DSA 245-1] New dhcp3 packages fix potential network flood"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Jan 28 2003 - 08:08:06 PST