CVE-2010-0935

Published Mar 5, 2010

Last updated 15 years ago

Overview

Description: Perforce Server 2009.2 and earlier, when the protection table is empty, allows remote authenticated users to obtain super privileges via a "p4 protect" command.
Source: cve@mitre.org
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.6
Impact score: 6.4
Exploitability score: 3.9
Vector string: AV:N/AC:H/Au:S/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-264

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EF44EE80-10EF-4315-803A-03721D9A330A",
            "versionEndIncluding": "2009.2"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:97.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6171666B-F9AD-4881-8CAE-784DFC6A121F"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:98.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6FAD0FA-C138-46F0-BAC7-2E09F58EE4AB"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:99.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAD84E81-C3BA-4DD9-96E2-D91A771506B3"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:99.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B308233-A983-4A81-A4C4-F6C16A2459FA"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2000.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B932AD96-4B03-4919-9EAF-8FDDF509A602"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2000.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84CB6C38-B27B-489E-97B9-782B662B6ED1"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2001.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "29E8D049-152E-4CE1-8C85-867A7270C597"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2001.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "982D9A67-BD40-4C94-AF54-A8FB7CC0D124"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2002.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12193659-D610-455A-B06D-AE7110BD542D"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2002.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80DD2893-F5C7-47E3-AE4D-0158446ABFD3"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2003.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C16D88BA-7A96-4777-818D-36DE5DF099C7"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2003.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "377C2F66-74CA-4F2A-8E36-8ED38F7C7772"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2004.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8446356-AE2A-45A8-9BD5-FFE6F27B3583"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2005.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "415CC8EA-3A14-4CCF-96AC-3DC40D59AD01"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2005.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70050D06-6477-4C6E-B623-6077A5FAFF78"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2006.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "64F41ABD-B632-4273-AF9B-678A3001D4E7"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2006.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FC0E4BA-E45C-40E0-BFCA-3CF67A2F98CC"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2007.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A9A5A24-16C6-4A2C-B470-7A3396803B2B"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2007.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5EF59CAD-F725-45F7-AA7B-F3434A84D012"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2007.3_143793:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F879E285-7825-4979-8597-218206F6ECD9"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2008.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "69C1EB32-E78C-4D11-9E59-DE5C20647388"
          },
          {
            "criteria": "cpe:2.3:a:perforce:perforce_server:2008.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD6127DB-12E2-49A7-9D4F-068FDF987D4D"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References