Windows 2000 Vulnerability Collection 5

SA null password attack for MS SQL Server

In Windows2000, enterprise-class users typically use another Microsoft product, which is the database management software MS SQL Server, but in conjunction with MS SQL Server, we found a lot of problems. Finally, let's talk a little bit about the security issues that are common to Windows2000 network operating systems that have MS SQL Server installed.

After MS SQL Server is installed, MS SQL Server will produce a default SA user, and the initial password is empty if the administrator does not set it. However, the SA is a very important Security module member in SQL Server, so hackers can remotely connect to the database via SQL Server, and then use the SQL Remote database Management command xp_cmdshell stored procedure ( Extended stored procedures) for command operations:

xp_cmdshell "NET User ID Password/add"
xp_cmdshell "net localgroup Administrators Id/add"

For the above two simple command intruders will be able to mount a new administrator-level Administrators group on a server in MS SQL Server. So we're here to remind you that the first thing you need to do when you install SQL Server is to change the empty password of the SA immediately. I'll tell you where to change the question.

And in general, some features are not necessary for administrators. If you do not need MS SQL Server's xp_cmdshell (use Sp_dropextendedproc "xp_cmdshell") this feature should not be xp_cmdshell extended stored proc (Extended stored procedures ) command function to keep.

We only need to enter in the isql window:

Use master
Sp_dropextendedproc ' xp_cmdshell '

Then put on the service Pack 3, here to remind administrators, be sure to always pay attention to Microsoft's patch files, and pay attention to the timely system and software updates to the latest patches.

In this article we describe several of the most popular vulnerabilities and attack methods in the near future, they realize the invasion is so convenient, there are a lot of netizens will think Windows2000 is an unsafe operating system, but if you think that it means that my article has not yet written understand, so in the end I would like to emphasize that, As long as we often play a patch package, the correct system to add a password, our safety rate is about 85%.