CVSS: 8.8EPSS: 1%CPEs: 10EXPL: 1CVE-2007-5969 – mysql: possible system table information overwrite using symlinks
https://notcve.org/view.php?id=CVE-2007-5969
10 Dec 2007 — MySQL Community Server 5.0.x before 5.0.51, Enterprise Server 5.0.x before 5.0.52, Server 5.1.x before 5.1.23, and Server 6.0.x before 6.0.4, when a table relies on symlinks created through explicit DATA DIRECTORY and INDEX DIRECTORY options, allows remote authenticated users to overwrite system table information and gain privileges via a RENAME TABLE statement that changes the symlink to point to an existing file. MySQL Community Server versiones 5.0.x anteriores a 5.0.51, Enterprise Server versiones 5.0.x... • http://bugs.mysql.com/32111 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2007-3781 – New release of MySQL fixes security bugs
https://notcve.org/view.php?id=CVE-2007-3781
15 Jul 2007 — MySQL Community Server before 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure. MySQL Community Server anterior al 5.0.45 no requiere privilegios como el SELECT para la tabla de origen en la sentencia CREATE TABLE LIKE, lo que permite a usuarios remotos autenticados la obtención de información sensible como la estructura de la tabla. • http://bugs.mysql.com/bug.php?id=25578 •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2007-3782 – New release of MySQL fixes security bugs
https://notcve.org/view.php?id=CVE-2007-3782
15 Jul 2007 — MySQL Community Server before 5.0.45 allows remote authenticated users to gain update privileges for a table in another database via a view that refers to this external table. MySQL Community Server anterior a 5.0.45 permite a usuarios autenticados remotamente obtener privilegios de actualización (update) para una tabla en otra base de datos mediante una vista que se refiere a esta tabla externa. • http://bugs.mysql.com/bug.php?id=27878 • CWE-264: Permissions, Privileges, and Access Controls •