CVE-2002-0721

Microsoft SQL Server 7.0-2000 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0721. PoCs published by David Litchfield.

AI-analyzed exploit summary This exploit leverages weak permissions in Microsoft SQL Server 2000's Agent to execute arbitrary commands or create files via scheduled jobs. It demonstrates privilege escalation by abusing the SQL Agent to run T-SQL commands, including xp_cmdshell, in the context of the SQL Server Service Account.

Description

Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator privileges via (1) xp_execresultset, (2) xp_printstatements, or (3) xp_displayparamstmt.

Exploits (1)

exploitdb WORKING POC VERIFIED

by David Litchfield · textremotewindows

https://www.exploit-db.com/exploits/21718

View Code ZIP pw:eip

This exploit leverages weak permissions in Microsoft SQL Server 2000's Agent to execute arbitrary commands or create files via scheduled jobs. It demonstrates privilege escalation by abusing the SQL Agent to run T-SQL commands, including xp_cmdshell, in the context of the SQL Server Service Account.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Microsoft SQL Server 2000

Auth required

Prerequisites: SQL Agent must be running · Attacker needs low-privileged access to SQL Server · xp_cmdshell must be accessible or exploitable via Extended Stored Procedure Privilege Elevation

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →