7.8
CVE-2008-1338
- EPSS 2.09%
- Veröffentlicht 14.03.2008 20:44:00
- Zuletzt bearbeitet 16.06.2026 22:51:31
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a server-DiffFile command with an integer value within a certain range, which causes a loop until all memory is exhausted.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Perforce ≫ Perforce Server Version <= 2007.3_143793
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.09% | 0.792 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
http://aluigi.altervista.org/adv/perforces-adv.txt
http://aluigi.org/poc/perforces.zip
http://secunia.com/advisories/29231
http://securityreason.com/securityalert/3735
http://www.securityfocus.com/archive/1/489179/100/0/threaded
http://www.securityfocus.com/bid/28108
https://exchange.xforce.ibmcloud.com/vulnerabilities/41017
https://exchange.xforce.ibmcloud.com/vulnerabilities/41361