Vulnerability Description
The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remote authenticated users to gain privileges.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mysql | Mysql | 5.0.0 |
| Oracle | Mysql | 5.0.0 |
References
- http://bugs.mysql.com/bug.php?id=27337
- http://dev.mysql.com/doc/refman/5.1/en/news-5-1-18.html
- http://lists.mysql.com/announce/470
- http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html
- http://osvdb.org/34765
- http://secunia.com/advisories/25301Vendor Advisory
- http://secunia.com/advisories/26073
- http://secunia.com/advisories/26430
- http://secunia.com/advisories/27823
- http://secunia.com/advisories/28637
- http://secunia.com/advisories/28838
- http://secunia.com/advisories/29443
- http://secunia.com/advisories/30351
- http://www.debian.org/security/2007/dsa-1413
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:028
FAQ
What is CVE-2007-2692?
CVE-2007-2692 is a vulnerability with a CVSS score of 6.0 (MEDIUM). The mysql_change_db function in MySQL 5.0.x before 5.0.40 and 5.1.x before 5.1.18 does not restore THD::db_access privileges when returning from SQL SECURITY INVOKER stored routines, which allows remo...
How severe is CVE-2007-2692?
CVE-2007-2692 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-2692?
Check the references section above for vendor advisories and patch information. Affected products include: Mysql Mysql, Oracle Mysql.