Description: This morning a new worm (W32.SQLExp.Worm) started propagating, it exploits a known vulnerability in Microsoft SQL Server 2000.
It is a small efficient worm only 376 bytes large, when succesfully infecting a host it will randomly try to exploit other IP addresses at an extreme rate.
The worm also hits servers and workstations which run other software using MSDE 2000. We have listed some of the software which may also be affected. Other third party software may also use MSDE 2000.
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.