SynopsisThe remote database server is vulnerable to multiple attack vectors.
DescriptionVersions of MySQL Community Server 5.1 earlier than 5.1.46 are potentially affected by the following vulnerabilities :
- A local user may be able to issue a 'DROP TABLE' command for one MyISAM table and remove the data and index files of a different MyISAM table. (Bug #40980)
- The application does not correct check privileges in calls to 'UNINSTALL PLUGIN', which could be abused by an unprivileged user to uninstall plugins loaded dynamically. (BUG #51770)
SolutionUpgrade to MySQL Community Server 5.1.46 or later.