CVE 2007-3781
MySQL Community Server before 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure.
Related bugs and status
CVE-2007-3781 (Candidate) is related to these bugs:
Bug #172260: [mysql] multiple vulnerabilities
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
172260 | [mysql] multiple vulnerabilities | mysql-dfsg (Ubuntu) | Unknown | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.0 (tuXlab) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-4.1 (Ubuntu) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.0 (Ubuntu) | Medium | Fix Released | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.1 (Ubuntu) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg (Ubuntu Dapper) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-4.1 (Ubuntu Dapper) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.0 (Ubuntu Dapper) | Medium | Fix Released | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.1 (Ubuntu Dapper) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg (Ubuntu Edgy) | Undecided | Won't Fix | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-4.1 (Ubuntu Edgy) | Undecided | Won't Fix | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.0 (Ubuntu Edgy) | Medium | Fix Released | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.1 (Ubuntu Edgy) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg (Ubuntu Feisty) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-4.1 (Ubuntu Feisty) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.0 (Ubuntu Feisty) | Medium | Fix Released | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.1 (Ubuntu Feisty) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg (Ubuntu Gutsy) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-4.1 (Ubuntu Gutsy) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.0 (Ubuntu Gutsy) | Medium | Fix Released | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.1 (Ubuntu Gutsy) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg (Ubuntu Hardy) | Unknown | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-4.1 (Ubuntu Hardy) | Undecided | Invalid | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.0 (Ubuntu Hardy) | Medium | Fix Released | ||
172260 | [mysql] multiple vulnerabilities | mysql-dfsg-5.1 (Ubuntu Hardy) | Undecided | Invalid |
See the
CVE page on Mitre.org
for more details.