CVE Vulnerabilities

CVE-2007-5970

Published: Dec 10, 2007 | Modified: Dec 17, 2019
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

MySQL 5.1.x before 5.1.23 and 6.0.x before 6.0.4 allows remote authenticated users to gain privileges on arbitrary tables via unspecified vectors involving use of table-level DATA DIRECTORY and INDEX DIRECTORY options when creating a partitioned table with the same name as a table on which the user lacks privileges.

Affected Software

Name Vendor Start Version End Version
Mysql Oracle 5.1.1 (including) 5.1.1 (including)
Mysql Oracle 5.1.2 (including) 5.1.2 (including)
Mysql Oracle 5.1.10 (including) 5.1.10 (including)
Mysql Oracle 5.1.11 (including) 5.1.11 (including)
Mysql Oracle 5.1.12 (including) 5.1.12 (including)
Mysql Oracle 5.1.13 (including) 5.1.13 (including)
Mysql Oracle 5.1.14 (including) 5.1.14 (including)
Mysql Oracle 5.1.15 (including) 5.1.15 (including)
Mysql Oracle 5.1.16 (including) 5.1.16 (including)
Mysql Oracle 5.1.17 (including) 5.1.17 (including)
Mysql Oracle 6.0.0 (including) 6.0.0 (including)
Mysql Oracle 6.0.1 (including) 6.0.1 (including)
Mysql Oracle 6.0.2 (including) 6.0.2 (including)
Mysql Oracle 6.0.3 (including) 6.0.3 (including)
Mysql Oracle 6.0.4 (including) 6.0.4 (including)

References