CVE-2010-0935

Perforce Server 2009.2 and earlier, when the protection table is empty, allows remote authenticated users to obtain super privileges via a p4 protect command.

Affected Software

Name	Vendor	Start Version	End Version
Perforce_server	Perforce	*	2009.2 (including)
Perforce_server	Perforce	97.3 (including)	97.3 (including)
Perforce_server	Perforce	98.2 (including)	98.2 (including)
Perforce_server	Perforce	99.1 (including)	99.1 (including)
Perforce_server	Perforce	99.2 (including)	99.2 (including)
Perforce_server	Perforce	2000.1 (including)	2000.1 (including)
Perforce_server	Perforce	2000.2 (including)	2000.2 (including)
Perforce_server	Perforce	2001.1 (including)	2001.1 (including)
Perforce_server	Perforce	2001.2 (including)	2001.2 (including)
Perforce_server	Perforce	2002.1 (including)	2002.1 (including)
Perforce_server	Perforce	2002.2 (including)	2002.2 (including)
Perforce_server	Perforce	2003.1 (including)	2003.1 (including)
Perforce_server	Perforce	2003.2 (including)	2003.2 (including)
Perforce_server	Perforce	2004.2 (including)	2004.2 (including)
Perforce_server	Perforce	2005.1 (including)	2005.1 (including)
Perforce_server	Perforce	2005.2 (including)	2005.2 (including)
Perforce_server	Perforce	2006.1 (including)	2006.1 (including)
Perforce_server	Perforce	2006.2 (including)	2006.2 (including)
Perforce_server	Perforce	2007.2 (including)	2007.2 (including)
Perforce_server	Perforce	2007.3 (including)	2007.3 (including)
Perforce_server	Perforce	2007.3_143793 (including)	2007.3_143793 (including)
Perforce_server	Perforce	2008.1 (including)	2008.1 (including)
Perforce_server	Perforce	2008.2 (including)	2008.2 (including)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2010-0935
CWE	https://cwe.mitre.org/data/definitions/264.html

Affected Software

References