W32.Cblade.Worm

W32.Cblade.Worm is a Microsoft SQL Server worm that infects only computers on which SQL Server is installed and which have the default installation where the Administrator account has no password.



To prevent this type of exploit, make sure that your SQL Server Administrator account is password protected.

Protection

• Initial Rapid Release version November 24, 2001
• Latest Rapid Release version August 20, 2008 revision 017
• Initial Daily Certified version November 24, 2001
• Latest Daily Certified version August 20, 2008 revision 016
• Initial Weekly Certified release date pending

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

• Wild Level: Low
• Number of Infections: 0 - 49
• Number of Sites: 0 - 2
• Geographical Distribution: Low
• Threat Containment: Easy
• Removal: Easy

Damage

• Damage Level: Low

Distribution

• Distribution Level: Low