Perforce 2009.2 Multiple Vulnerabilities Network Vulnerability

Summary

Perforce Server is prone to Multiple Vulnerabilities. 1. An information-disclosure vulnerability. An attacker can exploit this issue gain access to sensitive information that may lead to further attacks. 2. A directory-traversal vulnerability. An attacker can exploit this issue to overwrite arbitrary files within the context of the application. Successful exploits may compromise the affected application and possibly the underlying computer. 3. A security-bypass vulnerability. An attacker can exploit this issue to change a user's password, thereby aiding in further attacks. Perforce Server 2009.2 is vulnerable other versions may also be affected.

References

http://resources.mcafee.com/forms/Aurora_VDTRG_WP
http://www.perforce.com/perforce/products/p4d.html
http://www.securityfocus.com/bid/38586
http://www.securityfocus.com/bid/38590
http://www.securityfocus.com/bid/38591

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Adobe Flex SDK 'SWF' Files Cross-Site Scripting Vulnerability (Windows)
Adobe Reader Cross-Site Scripting & Denial of Service Vulnerabilities (Windows)
Adobe Reader Privelege Escalation Vulnerability - Jul07 (Mac OS X)
AOLserver Default Password
Brother HL-5370DW Printer 'post/panel.html' Security Bypass Vulnerability

Take action and discover your vulnerabilities