http://blogs.technet.com/srd/archive/2008/12/22/more-information-about-the-sql-stored-procedure-vulnerability.aspxSecurity Advisory 961040 provides mitigations and workarounds for a newly-public post-authentication heap buffer overrun in SQL Server, MSDE, and SQL Express. This blog post goes into more detail about the attack surface for each affected version anden-USCommunityServer 2.1 SP1 (Build: 61025.2)