CVE-2007-2691

Опубликовано: 17 мая 2007

Источник: redhat

Описание

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=241688mysql DROP privilege not enforced when renaming tables

Связанные уязвимости

CVE-2007-2691

ubuntu

больше 18 лет назад

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

CVE-2007-2691

nvd

больше 18 лет назад

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

CVE-2007-2691

debian

больше 18 лет назад

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does ...

GHSA-2xc6-gj77-5g2j

github

больше 3 лет назад

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

ELSA-2008-0364

oracle-oval

больше 17 лет назад

ELSA-2008-0364: mysql security and bug fix update (LOW)