CVE-2002-0982 Information

Description

Microsoft SQL Server 2000 SP2 when configured as a distributor allows attackers to execute arbitrary code via the @scriptfile parameter to the sp_MScopyscript stored procedure.

Reference

http://marc.info/?l=bugtraq&m=103004505027360&w=2