Network misconfigurations

Elastic Load Balancer (ELB) allows ingress access to MSSQL port 1434

Description

MSSQL port - 1434 is used by SQL server to listen for requests from SQL server clients. Allowing inbound traffic from all external IP addresses to MSSQL port is vulnerable to DoS, Buffer Overflow, SQL Injection attacks. It is a best practice to block public access, and restrict access from specific IP addresses to port 1434.