CVE-2007-6313 Information

Description

MySQL Server 5.1.x before 5.1.23 and 6.0.x before 6.0.4 does not check the rights of the entity executing BINLOG which allows remote authorized users to execute arbitrary BINLOG statements.

Reference

http://bugs.mysql.com/31611 http://dev.mysql.com/doc/refman/5.1/en/news-5-1-23.html http://osvdb.org/43179 http://www.securitytracker.com/id?1019083 http://www.vupen.com/english/advisories/2008/0560/references