Perforce 2009.2 Multiple Vulnerabilities Network Vulnerability

Summary

Perforce Server is prone to Multiple Vulnerabilities. 1. An information-disclosure vulnerability. An attacker can exploit this issue gain access to sensitive information that may lead to further attacks. 2. A directory-traversal vulnerability. An attacker can exploit this issue to overwrite arbitrary files within the context of the application. Successful exploits may compromise the affected application and possibly the underlying computer. 3. A security-bypass vulnerability. An attacker can exploit this issue to change a user's password, thereby aiding in further attacks. Perforce Server 2009.2 is vulnerable other versions may also be affected.

References

http://resources.mcafee.com/forms/Aurora_VDTRG_WP
http://www.perforce.com/perforce/products/p4d.html
http://www.securityfocus.com/bid/38586
http://www.securityfocus.com/bid/38590
http://www.securityfocus.com/bid/38591

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache Tomcat Multiple Vulnerabilities - 01 Mar14
Arris DOCSIS Password Disclosure
Avant Browser Address Bar Spoofing Vulnerability
Adobe Reader Multiple Unspecified Vulnerabilities Jun06 (Windows)
Apple Safari 'Webkit' Multiple Vulnerabilities -01 Feb15 (Mac OS X)

Take action and discover your vulnerabilities