CVE-2002-0721

CVE Database · CVE-2002-0721

CVE-2002-0721

· N/AModified

CVSS v3.1

N/A

EPSS

46.31%

Published

Sep 5, 2002

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

Exploit-DBMicrosoft SQL 2000/7.0 - Agent Jobs Privilege Escalation

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator privileges via (1) xp_execresultset, (2) xp_printstatements, or (3) xp_displayparamstmt.

Affected Products (10)

microsoft · data_enginevulnerable

microsoft · sql_servervulnerable

References (16)

http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0087.html

http://marc.info/?l=bugtraq&m=102950473002959&w=2

http://marc.info/?l=ntbugtraq&m=102950792606475&w=2

http://www.kb.cert.org/vuls/id/399531

US Government Resource

http://www.kb.cert.org/vuls/id/818939

US Government Resource

http://www.kb.cert.org/vuls/id/939675

US Government Resource

http://www.ngssoftware.com/advisories/mssql-esppu.txt

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-043

http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0087.html

KEV Catalog EPSS Scores Vendors All CVEs