Privilege Escalation Vulnerability in Perforce Server by Perforce
CVE-2010-0935

Currently unrated

Key Information:

Vendor: Perforce
Status: Perforce Server
Vendor: CVE Published:; 5 March 2010

What is CVE-2010-0935?

An issue in Perforce Server versions 2009.2 and earlier allows remote authenticated users to acquire elevated privileges when the protection table is empty. By executing the 'p4 protect' command, these users can gain super privileges, potentially compromising the entire server's security. This vulnerability highlights the importance of proper configuration and protection mechanisms to secure access controls in server environments.

References

http://www.perforce.com/perforce/doc.current/manuals/cmdr...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/36261

vdb-entryx_refsource_BID

http://lists.immunitysec.com/pipermail/dailydave/2010-Mar...

mailing-listx_refsource_MLIST

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Mar 5, 2010