Lucene search
K

56 matches found

CVE
CVE
added 2010/03/05 7:0 p.m.49 views

CVE-2010-0933

The vulnerability CVE-2010-0933 affects Perforce Server 2008.1 and is a directory traversal flaw that allows remote authenticated users to create arbitrary files by supplying a .. (dot dot) sequence in the argument to the p4 add command. Core details consistently reported across sources (NVD, Red...

6.8CVSS6.5AI score0.0179EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2010/03/05 7:0 p.m.24 views

CVE-2010-0933

Directory traversal vulnerability in Perforce Server 2008.1 allows remote authenticated users to create arbitrary files via a .. dot dot in the argument to the "p4 add" command...

6.3AI score0.0179EPSS
Exploits1References2
Cvelist
Cvelist
added 2010/03/05 7:0 p.m.22 views

CVE-2010-0931

The Perforce service p4s.exe in Perforce Server 2008.1 allows remote attackers to cause a denial of service daemon crash via crafted data, possibly involving a large sndbuf value...

6.7AI score0.01139EPSS
Exploits1References2
CVE
CVE
added 2010/03/05 7:0 p.m.50 views

CVE-2010-0929

CVE-2010-0929 affects Perforce Server 2008.1 (p4s.exe) and is a remote denial-of-service vulnerability triggered by crafted data beginning with the byte sequence 0x4C, 0xB3, 0xFF, 0xFF, 0xFF. The Perforce service may crash a daemon when processing such input, per multiple sources. The available d...

5CVSS6.8AI score0.01139EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2010/03/05 7:0 p.m.21 views

CVE-2010-0932

The FTP server in Perforce Server 2008.1 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a certain MKD command...

6.6AI score0.01666EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/09/07 12:0 a.m.15 views

Perforce Multiple Unspecified Remote Security Vulnerabilities

Perforce Server is prone to multiple unspecified remote security vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if descriptio...

5CVSS6.9AI score0.01139EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/09/07 12:0 a.m.16 views

Perforce Multiple Unspecified Remote Security Vulnerabilities

Perforce Server is prone to multiple unspecified remote security vulnerabilities, including: - Multiple unspecified denial-of-service vulnerabilities. - An unspecified vulnerability. An attacker can exploit these issues to crash the affected application, denying service to legitimate users. Other...

5CVSS0.8AI score0.01139EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2009/09/07 12:0 a.m.14 views

Perforce Detection

This host is running an Perforce Server. The Perforce Server, P4D, manages access to versioned files, tracks user operations and records all activity in a centralized database. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

7AI score
Exploits0References1
Prion
Prion
added 2008/03/14 8:44 p.m.16 views

Command injection

The Perforce service p4s.exe in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service daemon crash via a server-DiffFile command with an integer value within a certain range, which causes a loop until all memory is exhausted...

7.8CVSS7.2AI score0.02091EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2008/03/14 8:0 p.m.21 views

CVE-2008-1338

The Perforce service p4s.exe in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service daemon crash via a server-DiffFile command with an integer value within a certain range, which causes a loop until all memory is exhausted...

6.7AI score0.02091EPSS
Exploits1References8
CVE
CVE
added 2008/03/14 8:0 p.m.47 views

CVE-2008-1338

CVE-2008-1338 concerns the Perforce Server (p4s.exe) in versions 2007.3/143793 and earlier. A remote attacker can trigger a denial of service (daemon crash) by issuing a server-DiffFile command with an integer value in a certain range, which causes a loop that exhausts memory. The available sourc...

7.8CVSS6.8AI score0.02091EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2008/03/12 5:0 p.m.24 views

CVE-2008-1303

The Perforce service p4s.exe in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service daemon crash via a missing parameter to the 1 dm-FaultFile, 2 dm-LazyCheck, 3 dm-ResolvedFile, 4 dm-OpenFile, 5 crypto, and possibly unspecified other commands, which...

6.8AI score0.0758EPSS
Exploits1References7
securityvulns
securityvulns
added 2008/03/06 12:0 a.m.29 views

Multiple vulnerabilities in Perforce Server 2007.3/143793

Luigi Auriemma Application: Perforce Server http://www.perforce.com Versions: = 2007.3/143793 Platforms: Windows, Unix, Linux and Mac Bugs: NULL pointers, invalid memory access and endless loop Exploitation: remote Date: 05 Mar 2008 Author: Luigi Auriemma e-mail: [email protected] web:...

1.2AI score
Exploits0
exploitpack
exploitpack
added 2008/03/05 12:0 a.m.11 views

Perforce Server 2007.3 - Multiple Remote Denial of Service Vulnerabilities

Perforce Server 2007.3 - Multiple Remote Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/28108/info Perforce Server is prone to multiple remote denial-of-service vulnerabilities. An attacker can exploit these issues to crash the affected application or cause excessive...

7.6AI score
Exploits0
Exploit DB
Exploit DB
added 2008/03/05 12:0 a.m.32 views

Perforce Server 2007.3 - Multiple Remote Denial of Service Vulnerabilities

source: https://www.securityfocus.com/bid/28108/info Perforce Server is prone to multiple remote denial-of-service vulnerabilities. An attacker can exploit these issues to crash the affected application or cause excessive memory to be consumed, denying service to legitimate users. These issues...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/01/05 12:0 a.m.46 views

Perforce client: security hole by design

= Abstract = The Perforce client has a huge gapping security hole by design. It totally trusts the Perforce server and does whatever the server tells it, writing arbitrary files. = Disclaimer = This is so terribly obvious that I'd be surprised that this is news, but I couldn't find anything. Or I...

7AI score
Exploits0
Rows per page
Query Builder