MySQL Community Server Vulnerability Allows Unauthorized Update Privileges
CVE-2007-3782

Currently unrated

Key Information:

Vendor: Mysql
Status: Community Server
Vendor: CVE Published:; 15 July 2007

What is CVE-2007-3782?

A vulnerability in MySQL Community Server, specifically versions before 5.0.45, permits remote authenticated users to exploit views that reference external tables. This allows them to gain unauthorized update privileges on tables in other databases. The improper access controls could lead to potential data integrity issues and unauthorized modifications, posing significant risk to database security.

References

http://secunia.com/advisories/26710

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/27823

third-party-advisoryx_refsource_SECUNIA

http://bugs.mysql.com/bug.php?id=27878

x_refsource_CONFIRM

Timeline

Vulnerability published
Jul 15, 2007
Vulnerability Reserved
Jul 15, 2007

Mysql

What is CVE-2007-3782?

References

Timeline