New Microsoft SQL Server Worm

Posted by timothy on Saturday November 24, 2001 @06:45PM from the worms-crawl-in-and-the-worms-crawl-out dept.

Ian Bell writes: "A new unnamed worm has been released and, once again, Microsoft software is the target. More specifically, this new worm targets Microsoft SQL servers with no administrator passwords set. Once the server is infected, it logs onto Internet Relay Chat (IRC) servers and is ready to receive commands and act accordingly. Although this can be a fairly malicious worm, it is very unlikely to infect many servers due to the fact that majority of Microsoft SQL servers have administrator passwords."

3 of 290 comments (clear)

Min score:

Reason:

Sort:

Re:MSDE too? by Tachys · 2001-11-24 20:03 · Score: 1, Redundant

MSDE?

What that stand for Microsoft Database Excess?
Virus - The SQL by Alien+Being · 2001-11-24 21:39 · Score: 1, Redundant

UPDATE world
SET all_your_base = "are belong to us"
WHERE do_you_want_to_go = "today"
empty or default by macpeep · 2001-11-24 22:21 · Score: 3, Redundant

The problem isn't really that the password is empty. It would be just as bad with *any* default password. Remeber "scott" "tiger" on Oracle?