Thanks Creamhackered for this update in BPN. Its been published a few times already on the forums and at various sites but here she is again, the update to MS SQL Server for Pre SP3 servers
Elevation of Privilege in SQL Server Web Tasks (Q316333)
Originally posted: October 16, 2002
Updated: January 26, 2003
Summary
Who should read this bulletin: System administrators using Microsoft® SQL Server 7.0, SQL Server 2000, Microsoft Data Engine (MSDE) 1.0, and Microsoft Desktop Engine (MSDE) 2000.
Impact of vulnerability: Elevation of privilege
Maximum Severity Rating: Critical
Recommendation: System administrators should apply the patch to affected systems.
Affected Software:
- Microsoft SQL Server 7.0
- Microsoft Data Engine (MSDE) 1.0
- Microsoft SQL Server 2000
- Microsoft Desktop Engine (MSDE) 2000