Lucene search
MitreCVE-2010-0934HistoryMar 05, 2010 - 7:30 p.m.
CVE-2010-0934
2010-03-0519:30:00
CWE-78
mitre
web.nvd.nist.gov
25
perforce
server
2008.1
remote
authenticated
arbitrary commands
cve-2010-0934
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:S/C:C/I:C/A:C
AI Score
7.5
Confidence
Low
EPSS
0.008
Percentile
82.1%
The triggers functionality in Perforce Server 2008.1 allows remote authenticated users with super privileges to execute arbitrary operating-system commands by using a “p4 client” command in conjunction with the form-in trigger script.
Affected configurations
Node
perforceperforce_serverMatch2008.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| perforce | perforce_server | 2008.1 | cpe:2.3:a:perforce:perforce_server:2008.1:*:*:*:*:*:*:* |
Related
openvas
openvas
Perforce Multiple Vulnerabilities
2010-03-09 00:00:00
Perforce Multiple Vulnerabilities
2010-03-09 00:00:00
prion
prion
Command injection
2010-03-05 19:30:00
cvelist
cvelist
CVE-2010-0934
2010-03-05 19:00:00
nvd
nvd
CVE-2010-0934
2010-03-05 19:30:00
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:S/C:C/I:C/A:C
AI Score
7.5
Confidence
Low
EPSS
0.008
Percentile
82.1%
Related for CVE-2010-0934