Lucene search

[email protected]NVD:CVE-2010-0935

HistoryMar 05, 2010 - 7:30 p.m.

CVE-2010-0935

2010-03-0519:30:01

CWE-264

[email protected]

web.nvd.nist.gov

4.6 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:S/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.9%

JSON

Perforce Server 2009.2 and earlier, when the protection table is empty, allows remote authenticated users to obtain super privileges via a “p4 protect” command.

Affected configurations

NVD

Node

perforceperforce_serverRange≤2009.2

perforceperforce_serverMatch97.3

perforceperforce_serverMatch98.2

perforceperforce_serverMatch99.1

perforceperforce_serverMatch99.2

perforceperforce_serverMatch2000.1

perforceperforce_serverMatch2000.2

perforceperforce_serverMatch2001.1

perforceperforce_serverMatch2001.2

perforceperforce_serverMatch2002.1

perforceperforce_serverMatch2002.2

perforceperforce_serverMatch2003.1

perforceperforce_serverMatch2003.2

perforceperforce_serverMatch2004.2

perforceperforce_serverMatch2005.1

perforceperforce_serverMatch2005.2

perforceperforce_serverMatch2006.1

perforceperforce_serverMatch2006.2

perforceperforce_serverMatch2007.2

perforceperforce_serverMatch2007.3

perforceperforce_serverMatch2007.3_143793

perforceperforce_serverMatch2008.1

perforceperforce_serverMatch2008.2

References

lists.immunitysec.com/pipermail/dailydave/2010-March/006063.html

www.perforce.com/perforce/doc.current/manuals/cmdref/protect.html

www.securityfocus.com/bid/36261

4.6 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:S/C:P/I:P/A:P

6.2 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.9%

JSON

Related for NVD:CVE-2010-0935

cvelist1 prion1 cve1