If you're running SQL Server on Windows, you need to know that a new vulnerability in Windows Script Engine can result in the execution of arbitrary code on the vulnerable system. This vulnerability stems from a flaw in the way Windows Script Engine for JScript processes information. Microsoft has released Security Bulletin MS03-008, "Flaw in Windows Script Engine Could Allow Code Execution (814078)," to address this vulnerability and recommends that affected users immediately apply the appropriate patch mentioned in the bulletin. You can get more information about the vulnerability and link to download sites at http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms03-008.asp .