Unrated severityNVD Advisory· Published Sep 5, 2002· Updated Jun 16, 2026
CVE-2002-0721
CVE-2002-0721
Description
Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator privileges via (1) xp_execresultset, (2) xp_printstatements, or (3) xp_displayparamstmt.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
12cpe:2.3:a:microsoft:data_engine:1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:data_engine:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:data_engine:2000:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:sql_server:2000:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:microsoft:sql_server:2000:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:sql_server:2000:sp1:*:*:*:*:*:*
- cpe:2.3:a:microsoft:sql_server:2000:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:sql_server:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:sql_server:7.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:microsoft:sql_server:7.0:sp2:*:*:*:*:*:*
- cpe:2.3:a:microsoft:sql_server:7.0:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:sql_server:7.0:sp4:*:*:*:*:*:*
- (no CPE)range: 7.0
- Range: 2000
Patches
Vulnerability mechanics
References
8- www.kb.cert.org/vuls/id/399531nvdUS Government Resource
- www.kb.cert.org/vuls/id/818939nvdUS Government Resource
- www.kb.cert.org/vuls/id/939675nvdUS Government Resource
- archives.neohapsis.com/archives/ntbugtraq/2002-q3/0087.htmlnvd
- marc.infonvd
- marc.infonvd
- www.ngssoftware.com/advisories/mssql-esppu.txtnvd
- docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-043nvd
News mentions
0No linked articles in our index yet.