PublicDate: 2007-05-16 01:19:00 UTC
Candidate: CVE-2007-2691
References:
 https://ubuntu.com/security/notices/USN-528-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2691
Description:
 MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not
 require the DROP privilege for RENAME TABLE statements, which allows remote
 authenticated users to rename arbitrary tables.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: jdstrand
CVSS: 
upstream_mysql-dfsg-5.0: released (5.0.42, 5.1.18)
dapper_mysql-dfsg-5.0: released (5.0.22-0ubuntu6.06.5)
edgy_mysql-dfsg-5.0: released (5.0.24a-9ubuntu2.1)
feisty_mysql-dfsg-5.0: released (5.0.38-0ubuntu1.1)
devel_mysql-dfsg-5.0: released (5.0.45-1ubuntu2)