mailing list archives
RE: SQL & MSDE and Ports 1433 and 1434
From: "Sutton, Reed" <Reed_Sutton () cable comcast com>
Date: Wed, 12 Feb 2003 13:47:53 -0500
By SQL you mean SQL Server 2000. It is the full blown database server
product from Microsoft. Please note the earlier versions, mainly 7.0, are
not vulnerable to SQL Slammer.
MSDE is the Microsoft Desktop Engine. It is bundled with a wide variety of
Microsoft products, and it has a scaled down version of Microsoft's database
engine in it. It *IS* vulnerable to SQL Slammer, just like SQL Server 2000
is. For instance, if a developer has the Visual Studio .NET suite installed
on his laptop, MSDE is installed with it, and it used as a small database
for development purposes.
This is important to note - MSDE gets distributed with many MS products.
There are scanning tools available on Microsoft's website to find MSDE and
SQL Server instances.
Also realize, you can still have an outbreak of SQL Slammer on your network
today, or tomorrow, if you are still running and unpatched SQL Server 2000
instances or MSDE.
From: Eric Zatko [mailto:EZatko () co lucas oh us]
Sent: Wednesday, February 12, 2003 8:36 AM
To: security-basics () securityfocus com
Subject: SQL & MSDE and Ports 1433 and 1434
Good day everyone.
Can anyone explain the difference between SQL and MSDE, specifically with
regard to whether or not both were equally susceptible to the recent
"Slammer" worm? There seems to be much to read about this topic, but none
seems to be definitive, or even clear.
My sincere thanks in advance.