Published: 12/03/2008 Updated: 11/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and previous versions allows remote malicious users to cause a denial of service (daemon crash) via a missing parameter to the (1) dm-FaultFile, (2) dm-LazyCheck, (3) dm-ResolvedFile, (4) dm-OpenFile, (5) crypto, and possibly unspecified other commands, which triggers a NULL pointer dereference.

Vulnerable Product	Search on Vulmon	Subscribe to Product
perforce perforce server 2006.2
perforce perforce server 2006.1
perforce perforce server 2002.1
perforce perforce server 2001.2
perforce perforce server
perforce perforce server 2004.2
perforce perforce server 2003.2
perforce perforce server 2007.3
perforce perforce server 2007.2
perforce perforce server 2003.1
perforce perforce server 2002.2
perforce perforce server 2005.2
perforce perforce server 2005.1
perforce perforce server 2001.1
perforce perforce server 2000.2
perforce perforce server 2000.1

source: wwwsecurityfocuscom/bid/28108/info Perforce Server is prone to multiple remote denial-of-service vulnerabilities An attacker can exploit these issues to crash the affected application or cause excessive memory to be consumed, denying service to legitimate users These issues affect Perforce Server 20073; other versions may als ...

CWE-20 http://aluigi.altervista.org/adv/perforces-adv.txt http://aluigi.org/poc/perforces.zip http://www.securityfocus.com/bid/28108 http://secunia.com/advisories/29231 http://securityreason.com/securityalert/3735 https://exchange.xforce.ibmcloud.com/vulnerabilities/41015 http://www.securityfocus.com/archive/1/489179/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/31338/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-1303

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect