CVE-2007-3781
CVE-2007-3781
MySQL Community Server before 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://bugs.mysql.com/bug.php?id=25578http://dev.mysql.com/doc/refman/5.0/en/releasenotes-cs-5-0-45.htmlhttp://lists.mysql.com/announce/470http://osvdb.org/37783http://secunia.com/advisories/25301http://secunia.com/advisories/26073http://secunia.com/advisories/26430http://secunia.com/advisories/26498http://secunia.com/advisories/26987http://secunia.com/advisories/28040http://secunia.com/advisories/28108http://secunia.com/advisories/28128