Ten years ago to the day, we published an faq about a computer worm called slammer it was aptly named if you were in it back in 2003, i'm. This indicates an attempt by the sql slammer worm to exploit a buffer-overflow vulnerability in microsoft sql serverthe vulnerability results from the. The new worm, dubbed sql slammer, hit the internet on saturday, taking advantage of a known vulnerability in microsoft corp's sql 2000 web servers. In january 2003, wrote kevin poulson in securityfocus, the slammer worm penetrated a private computer network at ohio's davis-besse. Slammer (sometimes called sapphire) was the fastest computer worm in history as it began spreading throughout the internet, the worm.
The slammer worm, more commonly known as the sql slammer worm, is infamously known for its dos (denial-of-service) attack on various internet hosts. On saturday, january 25, 2003 the slammer worm, also known as sapphire, worm takes advantage of the buffer overflow vulnerability in microsoft sql. A look at the sql slammer worm 10 years later and the damage it's done. A just-completed study into the slammer worm that hit the internet a week ago has concluded what many people already suspected: slammer.
Served behavior of the slammer worm, which exhibited a peculiar decline in average per-worm scanning rate not seen in other worms (except for the later witty. The facts about the sql slammer worm it is called the sql slammer worm, w32sqlexpworm, sapphire worm, and helkern. The worm (also called slammer) began to infect hosts slightly before 05:30 utc on saturday, january 25 sapphire exploited a buffer overflow vulnerability in.
Abstract—the slammer worm spread so quickly that human response was ineffective in january 2003, it packed a benign payload, but its disruptive capacity. South korean engineer checks systems after a worm called sql slammer attacked internet servers chung sung-jun/getty images. Sql slammer is a computer worm that first appeared in the wild in january 2003, and caused a denial of service condition on tens of.
The worm, known as sql slammer, takes advantage of a bug that was discovered last july in microsoft's sql server database software. The sapphire worm was the fastest computer worm in history the worm (also called slammer) began to infect hosts slightly before 05:30. Dos computer worm sql slammer is hitting again a computer worm is an independent malware computer program that recreates itself to.
Sapphire/slammer smashed the speed record for internet bugs of sapphire's attack, the worm doubled its numbers every 85 seconds, more. Volgens antivirusbedrijf kaspersky labs is de slammer-worm, die de afgelopen dagen behoorlijk wat problemen op internet heeft veroorzaakt, wellicht. Sapphire/slammer worm shatters previous internet speed records 04 february 2003 by rex graham, san diego supercomputer center, ucsd cara sloman.
David litchfield, a security researcher, wrote the exploit code that was used as part of the infamous sql slammer worm that hit in 2003. The sql slammer worm, one of the most long-lived malware, now seems to be back online to compromise ancient sql servers wordwide.
But we can dissect the slammer worm and read the prophecy in its entrails: in the future, every blackhat will have 15 minutes of fame. Abstract although the internet routing infrastructure was not a direct target of the january 2003 slammer worm attack, the worm attack coincided in time with. The slammer worm takes advantage of a six-month old security loophole in microsoft sql server software it does not infect desktop computers.