Perforce Server

perforce_server

Vendor: Perforce • 10 CVEs

CVEs (10)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2010-0935 1Perforce 1Perforce Server Apr 29, 2026 Mar 5, 2010 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Perforce Server 2009.2 and earlier, when the protection table is empty, allows remote authenticated users to obtain super privileges via a "p4 protect" command.
CVE-2010-0934 1Perforce 1Perforce Server Apr 29, 2026 Mar 5, 2010 N/A· v4 N/A· v3 7.1 HIGH· v2 The triggers functionality in Perforce Server 2008.1 allows remote authenticated users with super privileges to execute arbitrary operating-system commands by using a "p4 client" command in conjunction with the form-in t...Show more The triggers functionality in Perforce Server 2008.1 allows remote authenticated users with super privileges to execute arbitrary operating-system commands by using a "p4 client" command in conjunction with the form-in trigger script.Show less
CVE-2010-0933 1Perforce 1Perforce Server Apr 29, 2026 Mar 5, 2010 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Directory traversal vulnerability in Perforce Server 2008.1 allows remote authenticated users to create arbitrary files via a .. (dot dot) in the argument to the "p4 add" command.
CVE-2010-0932 1Perforce 1Perforce Server Apr 29, 2026 Mar 5, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The FTP server in Perforce Server 2008.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a certain MKD command.
CVE-2010-0931 1Perforce 1Perforce Server Apr 29, 2026 Mar 5, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Perforce service (p4s.exe) in Perforce Server 2008.1 allows remote attackers to cause a denial of service (daemon crash) via crafted data, possibly involving a large sndbuf value.
CVE-2010-0930 1Perforce 1Perforce Server Apr 29, 2026 Mar 5, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Perforce service (p4s.exe) in Perforce Server 2008.1 allows remote attackers to cause a denial of service (infinite loop) via crafted data that includes a byte sequence of 0xdc, 0xff, 0xff, and 0xff immediately befor...Show more The Perforce service (p4s.exe) in Perforce Server 2008.1 allows remote attackers to cause a denial of service (infinite loop) via crafted data that includes a byte sequence of 0xdc, 0xff, 0xff, and 0xff immediately before the client protocol version number.Show less
CVE-2010-0929 1Perforce 1Perforce Server Apr 29, 2026 Mar 5, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Perforce service (p4s.exe) in Perforce Server 2008.1 allows remote attackers to cause a denial of service (daemon crash) via crafted data beginning with a byte sequence of 0x4c, 0xb3, 0xff, 0xff, and 0xff.
CVE-2008-1338 1Perforce 1Perforce Server Apr 23, 2026 Mar 14, 2008 N/A· v4 N/A· v3 7.8 HIGH· v2 The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a server-DiffFile command with an integer value within a certain range,...Show more The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a server-DiffFile command with an integer value within a certain range, which causes a loop until all memory is exhausted.Show less
CVE-2008-1303 1Perforce 1Perforce Server Apr 23, 2026 Mar 12, 2008 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a missing parameter to the (1) dm-FaultFile, (2) dm-LazyCheck, (3) dm-Re...Show more The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a missing parameter to the (1) dm-FaultFile, (2) dm-LazyCheck, (3) dm-ResolvedFile, (4) dm-OpenFile, (5) crypto, and possibly unspecified other commands, which triggers a NULL pointer dereference.Show less
CVE-2008-1302 1Perforce 1Perforce Server Apr 23, 2026 Mar 12, 2008 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a (1) server-DiffFile or (2) server-ReleaseFile command with a large int...Show more The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a (1) server-DiffFile or (2) server-ReleaseFile command with a large integer value, which is used in an array initialization calculation, and leads to invalid memory access.Show less