1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

SQL worm: Nov 28

Discussion in 'Web & Email' started by eddie5659, Dec 3, 2001.

Thread Status:
Not open for further replies.
  1. eddie5659

    eddie5659 Moderator Malware Specialist Thread Starter

    Mar 19, 2001

    The CBlade SQL Worm was designed propagate by exploiting a common
    misconfiguration in the Microsoft SQL Server Database. The worm then
    installs a DDoS (Distributed Denial of Service) component that uses the
    IRC (Internet Relay Chat) network to communicate with the worm's
    author(s). The threat from this specific worm has now passed and its
    propagation has ceased. However, a new variant of this worm could be
    developed to exploit the same or a similar vulnerability in Microsoft
    SQL Server.


    The reason why this caught my eye is because of the following:

    The CBlade worm includes two main components:
    - MS-SQL server scanning and infection
    - IRC component for remote control of infected systems as DDoS zombies

    Now, the DDoS zombies were the ones that brought down GRC.com a while back. WinXP users are the ones most at risk with this kind of attack, not being targated but being used.


As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/60503

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice