As security vendors continue to give the SQLSlammer worm a high risk rating, Microsoft has provided several downloads on products that include its SQL Desktop Engine (MSDE) 2000 to make it easier for users to update their MSDE 2000 installations to SP2 and SP3.

The update must be installed if using MSDE 2000, or a product that includes MSDE 2000, in order to apply the most recent cumulative SQL Server security patch, Microsoft Security Bulletin MS02-061. This patch includes the functionality necessary to prevent infection from the worm, also known as W32.Slammer.

Anyone who has patched their machines with the Microsoft Security Bulletin MS02-039 patch, or any subsequent cumulative SQL security patch, is completely safe from infection from the W32.Slammer, Microsoft officials say.

However, the company is recommending the application of Microsoft Security Bulletin MS02-061, which is the most recent cumulative SQL security patch, if you have not applied the patches for Microsoft Security Bulletin MS02-039, MS02-043, or MS02-056.

Alternatively, customers may install SQL Server 2000 Service Pack 3 or MSDE 2000 Service Pack 3 which incorporates the patches in Microsoft Security Bulletin MS02-061.

Since this worm does not have any visible symptoms, it is difficult for users to identify its presence on their systems. Additionally, a large number of systems could be exposed to SQLSlammer without network administrators realizing. The reason is that many applications use a Microsoft SQL Server component as an add-in. As this malicious code exploits a vulnerability in servers running the Microsoft SQL applications, systems that do not have Service Pack 3 installed can easily fall prey to this virus.

The main applications that use Microsoft SQL Server include: Compaq Insight Manager; Crystal Reports Enterprise; Dell OpenManage; HP Openview Internet Services Monitor; Microsoft .NET Framework SDK; Microsoft Office XP Developer Edition; Microsoft Project; Microsoft Visio 2000; Microsoft Visual FoxPro; Microsoft Visual Studio.NET and Veritas Backup Exec.

To read the security bulletin, visit this Microsoft page.

Find out more about the worm's impact at the CERT Coordination Center Web site.

For technical details and the threat assessment, visit this Symantec page.

To learn the virus characteristics and indications of infection, visit this McAfee page.

Compiled by Esther Shein.