perforce_server 拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1114708 漏洞类型 输入验证
发布时间 2008-03-05 更新时间 2008-09-05
CVE编号 CVE-2008-1303 CNNVD-ID CNNVD-200803-195
漏洞平台 Windows CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/31338
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200803-195
|漏洞详情
PerforceServer中的Perforceservice(p4s.exe)远程攻击者通过一个可以引发一个NULL指示器解除参照的不见的参数到达(1)dm-FaultFile,(2)dm-LazyCheck,(3)dm-ResolvedFile,(4)dm-OpenFile,(5)crypto,以及其它可能的未知命令,来造成拒绝服务(后台程序崩溃)。
|漏洞EXP
source: http://www.securityfocus.com/bid/28108/info

Perforce Server is prone to multiple remote denial-of-service vulnerabilities.

An attacker can exploit these issues to crash the affected application or cause excessive memory to be consumed, denying service to legitimate users.

These issues affect Perforce Server 2007.3; other versions may also be affected.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/31338.zip
|参考资料

来源:BID
名称:28108
链接:http://www.securityfocus.com/bid/28108
来源:BUGTRAQ
名称:20080305MultiplevulnerabilitiesinPerforceServer2007.3/143793
链接:http://www.securityfocus.com/archive/1/archive/1/489179/100/0/threaded
来源:SECUNIA
名称:29231
链接:http://secunia.com/advisories/29231
来源:MISC
链接:http://aluigi.org/poc/perforces.zip
来源:MISC
链接:http://aluigi.altervista.org/adv/perforces-adv.txt
来源:SREASON
名称:3735
链接:http://securityreason.com/securityalert/3735