File Overwrite Vulnerability in Perforce Client by Perforce
CVE-2007-0100

Currently unrated

Key Information:

Vendor: Perforce
Status: Perforce Client
Vendor: CVE Published:; 8 January 2007

What is CVE-2007-0100?

The Perforce Client is susceptible to a file overwrite vulnerability due to inadequate restrictions on file overwrites initiated by server requests. This flaw allows remote attackers to overwrite arbitrary files by altering the client configuration file hosted on the server or by employing a malicious server to execute unauthorized commands. Organizations utilizing Perforce Client should implement immediate measures to secure their configurations and monitor for unauthorized server activity.

References

http://osvdb.org/33369

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/archive/1/455977/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 8, 2007
Vulnerability Reserved
Jan 8, 2007