4.9
CVE-2007-2691
- EPSS 2.85%
- Veröffentlicht 16.05.2007 01:19:00
- Zuletzt bearbeitet 16.06.2026 22:40:07
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Debian ≫ Debian Linux Version3.1
Debian ≫ Debian Linux Version4.0
Canonical ≫ Ubuntu Linux Version6.06 SwEditionlts
Canonical ≫ Ubuntu Linux Version6.10
Canonical ≫ Ubuntu Linux Version7.04
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.85% | 0.849 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.9 | 6.8 | 4.9 |
AV:N/AC:M/Au:S/C:N/I:P/A:P
|
http://secunia.com/advisories/30351
http://www.redhat.com/support/errata/RHSA-2008-0364.html
http://secunia.com/advisories/31226
http://www.redhat.com/support/errata/RHSA-2008-0768.html
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html
http://secunia.com/advisories/28838
http://secunia.com/advisories/25946
http://www.mandriva.com/security/advisories?name=MDKSA-2007:139
http://secunia.com/advisories/27155
http://secunia.com/advisories/27823
http://www.debian.org/security/2007/dsa-1413
https://usn.ubuntu.com/528-1/
http://bugs.mysql.com/bug.php?id=27515
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html
http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
http://lists.mysql.com/announce/470
http://osvdb.org/34766
http://secunia.com/advisories/25301
http://secunia.com/advisories/26073
http://secunia.com/advisories/26430
http://secunia.com/advisories/32222
http://support.apple.com/kb/HT3216
http://www.redhat.com/support/errata/RHSA-2007-0894.html
http://www.securityfocus.com/archive/1/473874/100/0/threaded
http://www.securityfocus.com/bid/24016
http://www.securityfocus.com/bid/31681
http://www.securitytracker.com/id?1018069
http://www.vupen.com/english/advisories/2007/1804
http://www.vupen.com/english/advisories/2008/2780
https://exchange.xforce.ibmcloud.com/vulnerabilities/34347
https://issues.rpath.com/browse/RPL-1536
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9559