4

CVE-2007-3781

MySQL Community Server before 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MysqlCommunity Server Version5.0.41
MysqlCommunity Server Version5.0.44
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.78% 0.754
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4 8 2.9
AV:N/AC:L/Au:S/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/26987
http://secunia.com/advisories/30351
http://www.redhat.com/support/errata/RHSA-2008-0364.html
http://lists.mysql.com/announce/470
http://secunia.com/advisories/25301
http://secunia.com/advisories/26073
http://secunia.com/advisories/26430
http://www.redhat.com/support/errata/RHSA-2007-0894.html
http://www.securityfocus.com/archive/1/473874/100/0/threaded
https://issues.rpath.com/browse/RPL-1536
http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-45.html
http://secunia.com/advisories/26498
http://security.gentoo.org/glsa/glsa-200708-10.xml
http://www.securityfocus.com/bid/25017
http://bugs.mysql.com/bug.php?id=25578
http://osvdb.org/37783
http://secunia.com/advisories/28040
http://secunia.com/advisories/28108
http://secunia.com/advisories/28128
http://secunia.com/advisories/28343
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.428959
http://www.debian.org/security/2008/dsa-1451
http://www.mandriva.com/security/advisories?name=MDKSA-2007:243
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9195
https://usn.ubuntu.com/559-1/