cancel
Showing results for 
Search instead for 
Did you mean: 

SQL 2005 and Exex 2012 (security issue as SQL 2005 is EOS from Microsoft)

Ovi_I
Level 4

Hello,

 

We have received few security warnings regarding Backup exec 2012 and the default SQL 2005 wich it uses.

Microsoft did drop the support for 2005 and we receive those warnings on all clients using Exec 2012.

Did try getting an exception but some clients want an official point of view from Veritas. We would like to update to a newer version of sql (2008?) as updating Exec is out of discuttion.

The question is, what impact has in us, if any and if is safe to update sql to 2008.

 

Part of waning:

 

 Vulnerability Microsoft SQL Server Elevation of Privilege Vulnerability (MS12-070) 
Vulnerability EOL/Obsolete Software: Microsoft SQL Server 2005 Service Pack 4 (SP4) Detected

Thank you

1 ACCEPTED SOLUTION

Accepted Solutions

CraigV
Moderator
Moderator
Partner    VIP    Accredited
Hi, Check Colin Weaver's comments below (might also be worth sending him a message if you are unsure): https://vox.veritas.com/t5/Backup-Exec/How-to-Move-backup-exec-2010-R2-sql-DB-to-SQL-2008/td-p/50202... Always, ALWAYS grab a copy of the BEDB and the Data/Catalogs folders before doing anything. The BE 2012 SCL shows that SQL Express/SQL 2008 (all SPs) is supported to run the BEDB, but nothing further than 2008 R2. If you want to use newer versions of SQL/Express, you would need to upgrade BE itself. Verify this on the link below: https://www.veritas.com/support/en_US/article.000015186 Thanks!

View solution in original post

2 REPLIES 2

CraigV
Moderator
Moderator
Partner    VIP    Accredited
Hi, Check Colin Weaver's comments below (might also be worth sending him a message if you are unsure): https://vox.veritas.com/t5/Backup-Exec/How-to-Move-backup-exec-2010-R2-sql-DB-to-SQL-2008/td-p/50202... Always, ALWAYS grab a copy of the BEDB and the Data/Catalogs folders before doing anything. The BE 2012 SCL shows that SQL Express/SQL 2008 (all SPs) is supported to run the BEDB, but nothing further than 2008 R2. If you want to use newer versions of SQL/Express, you would need to upgrade BE itself. Verify this on the link below: https://www.veritas.com/support/en_US/article.000015186 Thanks!

Colin_Weaver
Moderator
Moderator
Employee Accredited Certified

As you mention EOS is one of your concerns and not just the security issue itself, then please be aware BE 2012 goes EOS in May as such you probably need to look at updating BE as well.

BE 16 uses SQL 2014 Express as the default BEDB repository (but can run with SQL 2008 R2 and SQL 2012) and if using our default SQL instance the upgrade wil be done for you (as long as SQL 2005 Express is patched to at  at least SP4)

 

If going to BE 16 (or 15) though be very careful to check the Software Compatbility Lists as we have removed support for a lot of older technologies (including older Exchange and SQL versions and  32bit operating systems on the BE server itself)