Re: MS03-031
From: Chris Wood (chris.wood_at_gov.ab.ca)
Date: 08/07/03
- Next message: Andrew J. Kelly: "Re: Phantom User or Role"
- Previous message: Kostas Mastrogiannis: "SQL 2000 Security Problem"
- In reply to: kanthi: "MS03-031"
- Next in thread: kanthi: "Re: MS03-031"
- Reply: kanthi: "Re: MS03-031"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 7 Aug 2003 07:57:15 -0600
Kanthi,
I had read in the @Stake advisory that SQL2000 pre sp3 could be exploited
and SQL Server service would crash. Not sure about SQL7 pre sp4. Microsoft
have only created the fix for the latest versions (7) sp4 (2000) sp3.
Chris Wood
Alberta Department of Energy
CANADA
"kanthi" <kanthi_mathi@hotmail.com> wrote in message
news:00ed01c35c9d$e8d79810$a001280a@phx.gbl...
> Hi all,
>
> I understand from Microsoft website that the above
> security patch is for the following :
>
> Microsoft SQL Server 2000 64 bit (all editions)
> Microsoft SQL Server 2000 (all editions) SP3
> Microsoft SQL Server 2000 (all editions) SP3a
> Microsoft SQL Server 7.0 Service Pack 4
> Microsoft SQL Server 2000 Desktop Engine (MSDE) SP3
> Microsoft Data Engine (MSDE) 1.0
> Microsoft Data Engine (MSDE) 1.0 SP4
>
>
> 1. How about servers running on SQL 2000 SP2/SP1 ? and SQL
> 7 SP3/SP2 ?
> 2. Are they affected or not ?
> 3. Is it that they are sill affected but the patches are
> only available on top of the latest service packs for SQL
> 2000 & SQL 7, and to save SQL 7 & SQL 2000 running with
> lower Service Packs, we have to apply the latest service
> pack and apply the security patch ?
>
> Thanks & regards,
- Next message: Andrew J. Kelly: "Re: Phantom User or Role"
- Previous message: Kostas Mastrogiannis: "SQL 2000 Security Problem"
- In reply to: kanthi: "MS03-031"
- Next in thread: kanthi: "Re: MS03-031"
- Reply: kanthi: "Re: MS03-031"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
