Victoria Reznichenko

**Name of the Vulnerable Software and Affected Versions** MySQL versions prior to 4.1.23 MySQL versions 5.0.x prior to 5.0.42 MySQL versions 5.1.x prior to 5.1.18 **Description** The issue allows remote authenticated users to rename arbitrary tables due to the lack of a requirement for the DROP privilege for RENAME TABLE statements. **Recommendations** For MySQL versions prior to 4.1.23, update to version 4.1.23 or later. For MySQL versions 5.0.x prior to 5.0.42, update to version 5.0.42 or later. For MySQL versions 5.1.x prior to 5.1.18, update to version 5.1.18 or later.