CVE-2008-1303

CVSS V2 Medium 5 CVSS V3 None
Description
The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a missing parameter to the (1) dm-FaultFile, (2) dm-LazyCheck, (3) dm-ResolvedFile, (4) dm-OpenFile, (5) crypto, and possibly unspecified other commands, which triggers a NULL pointer dereference.
Overview
  • CVE ID
  • CVE-2008-1303
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Modified
  • Published Version
  • 2008-03-12T17:44:00
  • Last Modified Date
  • 2018-10-11T20:31:38
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:perforce:perforce_server:*:*:*:*:*:*:*:* 1 OR 2007.3_143793
cpe:2.3:a:perforce:perforce_server:2000.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2000.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2001.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2001.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2002.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2002.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2003.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2003.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2004.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2005.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2005.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2006.1:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2006.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2007.2:*:*:*:*:*:*:* 1 OR
cpe:2.3:a:perforce:perforce_server:2007.3:*:*:*:*:*:*:* 1 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:L/Au:N/C:N/I:N/A:P
  • Access Vector
  • NETWORK
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • NONE
  • Integrity Impact
  • NONE
  • Availability Impact
  • PARTIAL
  • Base Score
  • 5
  • Severity
  • MEDIUM
  • Exploitability Score
  • 10
  • Impact Score
  • 2.9
History
Created Old Value New Value Data Type Notes
2022-05-10 18:29:40 Added to TrackCVE