CVE-2007-2691

CVE-2007-2691 · MEDIUM Severity

AV:N/AC:M/AU:S/C:N/I:P/A:P

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.