Web authoring command in Microsoft Content Management Server (MCMS) 2001 allows attackers to authenticate and upload executable content, by modifying the upload location, aka "Program Execution via MCMS Authoring Function."
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-041