CVE-2006-7217
N/A
N/A
Summary
Apache Derby before 10.2.1.6 does not determine schema privilege requirements during the DropSchemaNode bind phase, which allows remote authenticated users to execute arbitrary drop schema statements in SQL authorization mode.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.novell.com/linux/security/advisories/suse_security_summary_report.html
- http://db.apache.org/derby/releases/release-10.2.1.6.html
- http://issues.apache.org/jira/browse/DERBY-1858
- http://secunia.com/advisories/28636
References
- http://www.novell.com/linux/security/advisories/suse_security_summary_report.html
- http://db.apache.org/derby/releases/release-10.2.1.6.html
- http://issues.apache.org/jira/browse/DERBY-1858
- http://secunia.com/advisories/28636
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.