Command Execution Vulnerability in Perforce Server 2008.1
CVE-2010-0934

Currently unrated

Key Information:

Vendor: Perforce
Status: Perforce Server
Vendor: CVE Published:; 5 March 2010

What is CVE-2010-0934?

Perforce Server 2008.1 has a security flaw in the triggers functionality that enables remote authenticated users with super privileges to execute arbitrary operating-system commands. This vulnerability is exploited through the 'p4 client' command combined with the form-in trigger script, posing significant risks to system security and integrity.

References

http://www.securityfocus.com/bid/36261

vdb-entryx_refsource_BID

http://lists.immunitysec.com/pipermail/dailydave/2010-Mar...

mailing-listx_refsource_MLIST

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Mar 5, 2010