CVE-2008-1303
CVE-2008-1303
The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a missing parameter to the (1) dm-FaultFile, (2) dm-LazyCheck, (3) dm-ResolvedFile, (4) dm-OpenFile, (5) crypto, and possibly unspecified other commands, which triggers a NULL pointer dereference.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/31338unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://aluigi.altervista.org/adv/perforces-adv.txthttp://aluigi.org/poc/perforces.ziphttp://secunia.com/advisories/29231http://securityreason.com/securityalert/3735https://exchange.xforce.ibmcloud.com/vulnerabilities/41015http://www.securityfocus.com/archive/1/489179/100/0/threadedhttp://www.securityfocus.com/bid/28108