MySQL MERGE Privilege Revoke Bypass Vulnerability

MySQL is prone to a vulnerability that allows users with revoked privileges to a particular table to access these tables without permission.

Exploiting this issue allows attackers to access data when access privileges have been revoked. The specific impact of this issue depends on the data that the attacker may retrieve.


 

Privacy Statement
Copyright 2010, SecurityFocus