Lucene search

MitreCVELIST:CVE-2007-2691

HistoryMay 16, 2007 - 1:00 a.m.

CVE-2007-2691

2007-05-1601:00:00

mitre

www.cve.org

6.1 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

82.1%

JSON

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

References

bugs.mysql.com/bug.php?id=27515

dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html

lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

lists.mysql.com/announce/470

lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html

osvdb.org/34766

secunia.com/advisories/25301

secunia.com/advisories/25946

secunia.com/advisories/26073

secunia.com/advisories/26430

secunia.com/advisories/27155

secunia.com/advisories/27823

secunia.com/advisories/28838

secunia.com/advisories/30351

secunia.com/advisories/31226

secunia.com/advisories/32222

support.apple.com/kb/HT3216

www.debian.org/security/2007/dsa-1413

www.mandriva.com/security/advisories?name=MDKSA-2007:139

www.redhat.com/support/errata/RHSA-2007-0894.html

www.redhat.com/support/errata/RHSA-2008-0364.html

www.redhat.com/support/errata/RHSA-2008-0768.html

www.securityfocus.com/archive/1/473874/100/0/threaded

www.securityfocus.com/bid/24016

www.securityfocus.com/bid/31681

www.securitytracker.com/id?1018069

www.vupen.com/english/advisories/2007/1804

www.vupen.com/english/advisories/2008/2780

exchange.xforce.ibmcloud.com/vulnerabilities/34347

issues.rpath.com/browse/RPL-1536

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9559

usn.ubuntu.com/528-1/