REALLY HACKING SQL SERVER 2000. Less Theory – More Action Jasper Smith . Agenda. Slammer review and Tools SQL Password Sniffing Decoding WITH ENCRYPTION Privilege Escalation UDP 1434 Exploits Links to security resources Questions ?. What’s not covered.
Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.
Less Theory – More Action
Memory resident worm that propagates via UDP Port 1434 and exploits a vulnerability in the SQL Server Resolution Service
First patch available July 2002
Difficulty of installing security hotfixes hampered deployment (tools now available)
Too many exposed servers without Firewalls
MSDE difficult to patch and identify – installed by many products
 Threat Profiling SQL Server by David Litchfield http://www.nextgenss.com/papers/tp-SQL2000.pdf