Perforce

Perforce Server

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.6

CVE-2010-0935

Exploit
  • EPSS 0.45%
  • Veröffentlicht 05.03.2010 19:30:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Perforce Server 2009.2 and earlier, when the protection table is empty, allows remote authenticated users to obtain super privileges via a "p4 protect" command.

5

CVE-2010-0929

Exploit
  • EPSS 0.48%
  • Veröffentlicht 05.03.2010 19:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Perforce service (p4s.exe) in Perforce Server 2008.1 allows remote attackers to cause a denial of service (daemon crash) via crafted data beginning with a byte sequence of 0x4c, 0xb3, 0xff, 0xff, and 0xff.

5

CVE-2010-0930

Exploit
  • EPSS 0.48%
  • Veröffentlicht 05.03.2010 19:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Perforce service (p4s.exe) in Perforce Server 2008.1 allows remote attackers to cause a denial of service (infinite loop) via crafted data that includes a byte sequence of 0xdc, 0xff, 0xff, and 0xff immediately before the client protocol version ...

5

CVE-2010-0931

Exploit
  • EPSS 0.48%
  • Veröffentlicht 05.03.2010 19:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The Perforce service (p4s.exe) in Perforce Server 2008.1 allows remote attackers to cause a denial of service (daemon crash) via crafted data, possibly involving a large sndbuf value.

5

CVE-2010-0932

Exploit
  • EPSS 0.48%
  • Veröffentlicht 05.03.2010 19:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The FTP server in Perforce Server 2008.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a certain MKD command.

6.8

CVE-2010-0933

Exploit
  • EPSS 0.13%
  • Veröffentlicht 05.03.2010 19:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Directory traversal vulnerability in Perforce Server 2008.1 allows remote authenticated users to create arbitrary files via a .. (dot dot) in the argument to the "p4 add" command.

7.1

CVE-2010-0934

Exploit
  • EPSS 0.56%
  • Veröffentlicht 05.03.2010 19:30:00
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The triggers functionality in Perforce Server 2008.1 allows remote authenticated users with super privileges to execute arbitrary operating-system commands by using a "p4 client" command in conjunction with the form-in trigger script.

7.8

CVE-2008-1338

Exploit
  • EPSS 1.57%
  • Veröffentlicht 14.03.2008 20:44:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a server-DiffFile command with an integer value within a certain range, which causes a loop until all ...

5

CVE-2008-1302

  • EPSS 1.26%
  • Veröffentlicht 12.03.2008 17:44:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a (1) server-DiffFile or (2) server-ReleaseFile command with a large integer value, which is used in a...

5

CVE-2008-1303

Exploit
  • EPSS 8.11%
  • Veröffentlicht 12.03.2008 17:44:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a missing parameter to the (1) dm-FaultFile, (2) dm-LazyCheck, (3) dm-ResolvedFile, (4) dm-OpenFile, (...