CVE-2007-2691

Опубликовано: 17 мая 2007

Источник: redhat

EPSS Низкий

Описание

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=241688mysql DROP privilege not enforced when renaming tables

EPSS

Процентиль: 76%

0.01016

Низкий

Связанные уязвимости

CVE-2007-2691

ubuntu

около 18 лет назад

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

CVE-2007-2691

nvd

около 18 лет назад

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

CVE-2007-2691

debian

около 18 лет назад

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does ...

GHSA-2xc6-gj77-5g2j

github

около 3 лет назад

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

ELSA-2008-0364

oracle-oval

около 17 лет назад

ELSA-2008-0364: mysql security and bug fix update (LOW)

EPSS

Процентиль: 76%

0.01016

Низкий