CVE-2007-3782 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2007-3782
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-3782

Description: MySQL Community Server before 5.0.45 allows remote authenticated users to gain update privileges for a table in another database via a view that refers to this external table.

CVE Status: Candidate

References: UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-528-1 SUSE http://www.novell.com/linux/security/advisories/2007_19_sr.html ST 1018663 SAID Secunia Advisory: SA26710 Secunia Advisory: SA26073 Secunia Advisory: SA25301 Secunia Advisory: SA26987 Secunia Advisory: SA27155 Secunia Advisory: SA26430 Secunia Advisory: SA27823 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0894.html MLIST http://lists.mysql.com/announce/470 MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:177 DEBIAN http://www.debian.org/security/2007/dsa-1413 CONFIRM http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-45.html http://bugs.mysql.com/bug.php?id=27878 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/473874/100/0/threaded BID 25017

Return to the previous page.