| Revision Date: | 2015-11-16 | Version: | 1 | | Title: | CVE-2007-2692 | | Description: |
The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2007-2692
| | Platform(s): | Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
Open Enterprise Server
openSUSE 10.3
SLES SDK 9 for IBM iSeries and IBM pSeries
SLES SDK 9 for IBM S/390 and IBM zSeries
SLES SDK 9 for IBM zSeries
SLES SDK 9 for IPF
SLES SDK 9 for x86
SLES SDK 9 for X86-64
SUSE LINUX 10.1
| Product(s): | |
|