> Tech > Trustworthy Computing Security Update

Trustworthy Computing Security Update

Tech - Par iTPro - Publié le 24 juin 2010
email

Internal Talking Points
Trustworthy Computing Marketing · January 2003

"Slammer" Worm Clogs Internet after Attacking Un-patched SQL Server 2000

At approximately 9:30 PM PST Friday January 24, Microsoft became aware of an Internet attack causing a dramatic increase in network traffic worldwide. Microsoft immediately began investigating the issue and learned of

Trustworthy Computing Security Update

a virus targeting systems running either Microsoft® SQL Server™ 2000 or Microsoft SQL Data Engine (MSDE) 2000 machines that were not updated with security patches. This virus does not appear to attack the data of infected systems. Microsoft is working around the clock to ensure our affected customers are protected. Typical home PC users’ computers are not affected. This is a criminal act and we are working with law enforcement authorities. The most recent information is available on http://www.microsoft.com/security.

Q: What is the Slammer virus ?

The “Slammer” virus is an Internet worm targeting un-patched SQL Server 2000 and MSDE 2000 systems resulting in a high volume of network traffic on both the Internet and private internal networks.

Which systems are impacted ?

Microsoft SQL Server 2000, SP1, SP2, Developer, Evaluation, and Personal Editions, and MSDE 2000.
SQL Server 2000, SP1, SP2, Developer, and Personal Editions require either a patch or SP3.

SQL Server 2000 Evaluation Editions are intended for short-term testing and should not be used in production environments. For this reason, the Evaluation Editions do not support security patches and service packs.
Any computers running SQL Server 2000 Evaluation Editions should be kept in a test environment separate from network access.
If computers are running SQL Server 2000 Evaluation Editions are part of a corporate network, they should be taken offline and updated to released versions with the appropriate security patches.

MSDE 2000 is a database engine that is included with several products from Microsoft and third parties. In most cases MSDE is offered as an alternative for customers who use these applications in situations that do not require the scale of SQL Server 2000. MSDE 2000 installation often requires an explicit selection by the user in cases where the customer may not need features that require a database, or where the customer can choose to use SQL Server 2000 as the database.

Microsoft products that install MSDE fall into one of three categories:
1. Products that require an explicit selection to install MSDE :

· .NET Framework SDK

· ASP.NET Web Matrix

· BizTalk® Server 2002 Partner Edition

· Host Integration Server 2000

· Office XP Premium, Professional, Developer

· Project Server 2002

· Small Business Server 2000

· SQL Server 2000, Enterprise Edition, Developer Edition, Personal Edition (RTM, SP1, SP2)

· Visual FoxPro® 7.0 and 8.0 beta

· Visual Studio® Standard, Professional, Academic, Enterprise (.NET release only – not 6.0)

· Windows Enterprise Server 2003 RC1, only if UDDI is enabled

· Windows Server 2003 RC1, only if UDDI is enabled

2. Products that install MSDE by default:

· Application Center 2000 RTM, SP1, SP2

· Operations Manager 2000 RTM, SP1

· SharePoint™ Team Services 2.0 beta

3. Products with the updated version of MSDE which includes SP3, and are therefore are not affected:

· Windows Enterprise Server 2003 RC2

· Windows Server 2003 RC2

All customers are encouraged to verify that MSDE 2000 is present via the following steps:

1. Right-click on the My Computer icon

2. Select Manage

3. Double-Click on Services and Applications

4. Double-Click Services

If MSSQLSERVER is in the list of services, the default instance of MSDE is installed on the machine. Other instances may exist, if they do they will be listed as MSSQL$**** (where stars indicate the name of the instance)

Instructions for removing the Slammer Virus from MSDE can be found at:
http://www.microsoft.com/technet/security/virus/alerts/slammer.asp

For the most current information about additional security-related information about Microsoft products, visit the following Microsoft Web site: http://www.microsoft.com/security

Téléchargez gratuitement cette ressource

Comment sécuriser la Digital Workplace ?

Comment sécuriser la Digital Workplace ?

Avec le recours généralisé au télétravail, les entreprises ont ouvert davantage leur SI. En dépit des précautions prises, elles ont mécaniquement élargi leur surface d’exposition aux risques. Découvrez 5 axes à ne pas négliger dans ce Top 5 Sécurité du Télétravail.

Tech - Par iTPro - Publié le 24 juin 2010