CVE-2007-3782 – New release of MySQL fixes security bugs
https://notcve.org/view.php?id=CVE-2007-3782
MySQL Community Server before 5.0.45 allows remote authenticated users to gain update privileges for a table in another database via a view that refers to this external table. MySQL Community Server anterior a 5.0.45 permite a usuarios autenticados remotamente obtener privilegios de actualización (update) para una tabla en otra base de datos mediante una vista que se refiere a esta tabla externa. • http://bugs.mysql.com/bug.php?id=27878 http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-45.html http://lists.mysql.com/announce/470 http://secunia.com/advisories/25301 http://secunia.com/advisories/26073 http://secunia.com/advisories/26430 http://secunia.com/advisories/26710 http://secunia.com/advisories/26987 http://secunia.com/advisories/27155 http://secunia.com/advisories/27823 http://secunia.com/advisories/30351 http://securitytracker.com/id?101 • CWE-264: Permissions, Privileges, and Access Controls •