Unrated severityNVD Advisory· Published Mar 12, 2008· Updated Apr 23, 2026
CVE-2008-1303
CVE-2008-1303
Description
The Perforce service (p4s.exe) in Perforce Server 2007.3/143793 and earlier allows remote attackers to cause a denial of service (daemon crash) via a missing parameter to the (1) dm-FaultFile, (2) dm-LazyCheck, (3) dm-ResolvedFile, (4) dm-OpenFile, (5) crypto, and possibly unspecified other commands, which triggers a NULL pointer dereference.
Affected products
16cpe:2.3:a:perforce:perforce_server:*:*:*:*:*:*:*:*+ 15 more
- cpe:2.3:a:perforce:perforce_server:*:*:*:*:*:*:*:*range: <=2007.3_143793
- cpe:2.3:a:perforce:perforce_server:2000.1:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2000.2:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2001.1:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2001.2:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2002.1:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2002.2:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2003.1:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2003.2:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2004.2:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2005.1:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2005.2:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2006.1:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2006.2:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2007.2:*:*:*:*:*:*:*
- cpe:2.3:a:perforce:perforce_server:2007.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- aluigi.org/poc/perforces.zipnvdExploit
- secunia.com/advisories/29231nvdVendor Advisory
- aluigi.altervista.org/adv/perforces-adv.txtnvd
- securityreason.com/securityalert/3735nvd
- www.securityfocus.com/archive/1/489179/100/0/threadednvd
- www.securityfocus.com/bid/28108nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/41015nvd
News mentions
0No linked articles in our index yet.