TCP Port 1433
Microsoft SQL Server port used typically for remote connections to the
Inbound scans are typically looking for Microsoft SQL Server installations
with weak password protection and if successful are looking to steal or corrupt
data or use some features with SQL Server to compromise the host system.
There are some worms which scan this port but mostly tools.
Outbound scans if occurring in volume should be considered an indication of a
possible worm infection on the source computer and should be investigated.
Attacks on TCP Port 1433
PortPeeker Capture of SQL Server Connection Attempt
Exploitation of Vulnerabilities in Microsoft SQL Server
Page last updated on
February 09, 2004