CERT has issued advisory CA-2002-22 to cover the multiple
vulnerabilities that have been recently discovered in Microsoft SQL Server 2000, including those we reported on last week. MS has issued eight (!) bulletins for over twelve security holes in the server since December 2001.

This advisory goes over the most serious vulnerabilities, which can yield system compromise when exploited in conjunction with one another. Microsoft SQL Server 7.0, SQL Server 2000, and SQL Server Desktop Engine 2000 are affected; be sure you’re up to date with the patches, as exploits are likely circulating in the wild.