[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249966

 
 

909

 
 

195636

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-2693Date: (C)2007-05-15   (M)2023-12-22


MySQL before 5.1.18 allows remote authenticated users without SELECT privileges to obtain sensitive information from partitioned tables via an ALTER TABLE statement.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 3.5
Exploit Score: 6.8
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: SINGLE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
SECTRACK-1018071
BID-24008
SECUNIA-25301
ADV-2007-1804
http://bugs.mysql.com/bug.php?id=23675
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html
mysql-alter-information-disclosure(34349)

CPE    1
cpe:/a:mysql:mysql:5.1.5

© SecPod Technologies