Vulnerabilities > CVE-2010-0930 - Resource Management Errors vulnerability in Perforce Server 2008.1

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

perforce

CWE-399

NVD

Published: 2010-03-05

Updated: 2010-03-08

Summary

The Perforce service (p4s.exe) in Perforce Server 2008.1 allows remote attackers to cause a denial of service (infinite loop) via crafted data that includes a byte sequence of 0xdc, 0xff, 0xff, and 0xff immediately before the client protocol version number.

Vulnerable Configurations

Part	Description	Count
Application	Perforce Perforce Perforce Server 2008.1	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://lists.immunitysec.com/pipermail/dailydave/2010-March/006063.html
http://www.securityfocus.com/bid/36261